[DEFCON - Hacking Conference]

I am getting ready for it today. I am heading out Thursday. When you guys heading out?

[DEFCON - Hacking Conference]

sablefoxx talked me into it so I should be there. Maybe hak5 meet up / party?

I agree, we should all have a Hak5 party/meetup! It will be a great chance to interact with the hak5 community!!!

Also, I just met my companies VP, and talked to him about DEFCON and how it would advance my knowledge, which is true, he said, "I'll pay for your trip to DEFCON, yeah, I'll pay for one conference a year, if the economy was better I'd pay for more, but one a year should be ok, right?"

I loved the comment my friend said after finding that out. His qoute was, "Great job with the social engineering!" I laughed hard. I am rather charming =P.

[DEFCON - Hacking Conference]

I'll be there on Thursday. I would love to go gamble a bit after we get our badges and maybe go to one of those famous buffets. We can all plan a meet up. I am interested.

[Games You are Anticipating]

HL2: EP3, Star Trek Online, Star wars Old Republic, Champions Online, Prototype, InFamous, and Marvel vs Capcom 2 Remix

[DEFCON - Hacking Conference]

You can't pre-register, you can go the night before to get your pass, avoid the lines (HIGHLY recommended). Last year they ran out of the cool badges and handed out laminates instead, lame. Go early!! CASH only, I don't recommend using an ATM there, they're not safe.... ;)

I went the last 2 years, it's so worth it! If you look at the price of other similar cons, this one is so much cheaper too.

To answer another thread, yes vegas has no laws about open containers. You can take your beverage from the liquor store or bar and walk around with it and go into other bars and casinos. Nobody hassles you about that stuff.

Thanks for the suggestion! I'll definitely be there early to get the nifty badges, also, we are going a day early. I will be there July 30th at 11am. What time do they open up registration on that Thursday?

[DEFCON - Hacking Conference]

DEFCON is a Hacking Conference in Las Vegas.

When: July 30th - Aug 2nd, 2009

Where: Las Vegas at the Riviera Hotel and Casino

Website: DEFCON

I just booked my flight and hotel. Correct me if I am wrong, I don't think you can pre-register. It seems like at the door registration only. This is my first time in Las Vegas and DEFCON, I am soooo excited XD.

Who wants to go and who's going? If you are going, we should plan a meet up!

[NETWORK SETUP]

Yeh I did spend like $150 on a Logitech wireless keyboard and mouse but remote desktop is just easier .

Random pic at work I found lying about...

Our patch panel is an extreme spaghetti board... and its only going to get work with renovations all over the office .

I like your setup man! Do you have a gun near by in case of zombie infestation?

[NETWORK SETUP]

Not exactly sure but, our grant was over 1 million and we spent all of that, haha. That did include paying me and the director of it (horribly low I might add) to build it.

I want to do a revamp of how we are using the equipment. I think there is a lot more we can do with it.

If you ever come to the DC area. I can show it to you, also we could play with it a bit ;P.

[NETWORK SETUP]

This is my setup at my old job that I built from the bottom up. It is a virtual lab for remote access to learn how to pen test, engineer, manage, and operate a network. I modeled my lab at home off this one.

This is the full topology without the new ASA devices.

The following are devices you see per rack "A total of 6 of these racks":

2 x Cisco PIX 515E

2 x ASA 5510 Security Appliances

5 x Intel Dual Core servers with about 8GBs of RAM. (Running Virtual Server 2005, eeeeewwww, I know, I am trying to get them to change it to VMware or ESXi/ESX)

1 x Cisco 871 Access Router (VPN Access)

2 x Cisco Catalyst Switch 2960

1 x Cisco Switch 3550

2 x Cisco Routers 2811

1 x Cisco Router 1841

1 x Cisco 2511 Terminal Server

1 x Radius Server

I still have remote administrative access and help out when they really need the help. =)

[April 09 Desktops]

I use this one for work.

[New Lab progress]

When has there ever been an accident with chemicals and elements?

This surely isn't an example! *Hindenburg*

[New Lab progress]

Warming party at my place eh? Soo, should we all get drunk and then work on the server equipment? Then hack, hack, hack, hack?

I have some awesome Tequila!! Also I make some awesome sangrea and fruity alcoholic beverages! I am thinking about getting some liquid nitrogen and freezing some alcohol, make them into ice cubes. heheh.

[New Lab progress]

Well guys, looks like I am getting my own apartment soon! That means I will be setting up my remote network soon XD.

My apartment will have FIOS XD. I am sooo excited! I am probably going to get 50/50 up/down, hehe. I work for verizon so I get a discount ;p.

Shonen, we should definitely link our networks together! That will allow us to setup a better testing environment and more things to play with for all of us!

We should discuss how we want to set this up, scenario wise. Like, my network is the main Domain controller with exchange, clients, and website, and your system is a remote site with clients and backup domain controller.

Or the reversed.

The possibilities are endless!

Once I move in to my new place and get stuff setup. I will change the cyberpen website to a more community interactive site with profiles and such that people can comment on and send messages to other users so we can all coordinate.

[New Lab progress]

Very nice shonen,

I am setting up a lab as well. Here is my post here. http://hak5.org/forums/index.php?showtopic=12125 I am trying to make a HakSpace community.

Check it out and tell me what you think.

Maybe we could VPN (Site to Site), make some sort of tunnel into each others networks and do some pen testing and experimenting against each others labs, ne?

I will be using OpenVPN, I just got another network card for the box that will be running it, it will be up and running soon.

If anyone else is building a lab, maybe we can all network and VPN them together to make a large network for all of us to have fun with. Just an idea.

(I am loving the setup!! Dragon Ball! God, that brings back memories.)

[I-Doser.. What's your thoughts?]

I LOL'd at the south park references.

I will check out I-Doser, thanks for the interesting suggestion. I am interested in the affect it will have one me. Sometimes, I get way stressed out. I need to find a way to calm my anxiety sometimes. Hopefully, this will be an option for me.

Also VaKo, I also agree with what you are saying. I will admit drugs aren't for me, the occasional beer is all I need.

Great post.

Cheers,

Hyde

[Episode 5x04]

Oooh, I'm gonna have to setup that DNS tunneling thing. I would've loved a guide for the parts that weren't explained(like how to set up your own name server) since I'm still new to a lot of this, but I can probably google me some guides. My registrar wants both IPs and names when you want to use your own name server though, might have to find away around that since using the same IP twice doesn't seem to work.

There is a great service called dynamic DNS, dyndns. If you have a dynamic ip address (most people do) it will update the DNS server with your IP, which they run(DNS server). Basically runs a small app on your desktop/server or router, and tells the DNS server your forever(doesn't happen daily but it will change) changing IP.

http://www.dyndns.com/

[Episode 5x04]

Good episode! I will have to setup the DNS tunneling on my system at home ;) .

Thanks Hak5!

[CyberPEN ~ new community idea]

I was thinking about this and I have a few questions. Are you setting up vpns for individual VMs or to the main os? I cant do diagrams but by having a vpn to the core of the machine the person now has access to the main OS and can root it very easily. There is a RH exploit for escalation of privileges. But by having a team to verify people individually you can "almost" eliminate this threat.

What is the main OS going to be? Think of using some sort of steady state for that and saving the VMs and configs for users on a different partition. My idea looks a bit like

Partition 1 = Main OS

Partition 2 = Swap(if linux, better yet just use a swap file... unless we have access to the main os)

Partition 3 = VMs

Partition 4 = User configs, VPN stuff

Then if possible have Partition 4 mirrored or set to back up at certain intervals, that way if something happens you can restore it. On another note, this isnt going to be using you ip from your ISP is it? If so then be careful what you have on your network because you may get a few unsavoury persons attacking you directly. Other than that great idea!

Are you setting up vpns for individual VMs or to the main os?

You will connect to the VPN device remotely, then you will be apart of the management LAN, from there you can connect to the VMserver, which is a Ubuntu machine. The only way they can interface with the VMserver will be via a browser, https to be specific. No ssh, no console or any other type of access, just a web Gui. If there is an exploit I am unaware of inform me thanks. They won't be able to access the main OS. They can screw up the VMs all they want though.

This is how I was going to do the VMs and VPN. I will try and do I diagram.

VPN is going to be it's own little device seperate to the VMserver.

Internet

Devices:

VPN device =

OpenVPN

VMserver (Ubuntu server 8.10[i might use ESXi later) =

Partition 1 = hda = Main OS, / (root)

Partition 2 = hdb = Swap

Partition 3 = hdb = /home

Partition 4 = hdc = /usr, VMs storage

Cisco equipment will be only accessible through one of the Virtual machines. The VM is connected to a console port with a terminal server to configure all the cisco equipment

I will actually draw a network layout this weekend and post it on my site and here.

I will be using an IP from my ISP. Yes, I know it has some dangers but it is fine for now. I will get my own dedicated connection eventually.

Does this make sense?

[Lanschool v7.2]

shonen,

I used to work with LANSchool while I worked for Montgomery College and I have to say it is rather broken, haha. I haven't played with the latest version of LANSchool but with previous versions, version 6. You made some really great observations with it. Let me see if I can help and add some more information.

You could change the channels after install. You have to get into regedit though. It is a registry key which you just change the channel number, it was in the local machine and then look for the LANschool OU. We used to do that all the time for special occasions. This would allow a student to be able to get out of the LANSchool broadcast.

Also LANSchool isn't very reliable, one of the rooms I was working with, some of the computers wouldn't get the signal from the teacher station to follow a certain command. (This was on a 10Mbps LAN, haha)

There is almost no security for LANschool, what so ever. I believe it works on broadcasts as well, almost entirely. Making the network very noisy.

Ah yes, you could actually unplug yourself from the network and it would prevent the teacher from sending commands to your station. If internet access was already being blocked you could restart your PC and unplug the RJ45 cable from the back, log back in and you would be free to do as you like.

You can go to LANSchool's website and download a trial. What I used to do from time to time was download LANSchool, the trial, and install it, set the channel to the room I was in, and take over all the other PCs. I could shut off their internet and other things from my station.

Hope that helps.

[Pictures of your rigs at work.]

My workplace. I used to change it about once a month, but I'm quite satisfied with the current one.

I love your setup. Especially the girl in the kimono. Everything looks so elegant.

Can I has?

[CyberPEN ~ new community idea]

I am going to make a push to get VPN up and running, cable the cisco equipment, and configure the terminal server (device that consoles into the cisco equipment so you can configure all the cisco equipment from one device) this weekend. I will be using OpenVPN.

DingleBerries, stingwray, and VaKo, I'd like for you three to be the first beta testers. If you don't mind.

I'd like to get a dialogue going between us, via a chat system of some sort. Brain storm some ideas on how to harden the VM Server (protect it from being used for evil, attack outside the network), events, contests, scenarios, programs we can use to improve the lab, and website.

Deathdefyer2002 and Necrosis, I haven't forgot about you two. I will get you involved as well later.

Wish me luck!!

Hyde

[CyberPEN ~ new community idea]

I just setup a temporary website. The full website will be the same address but will be revamped with Joomla. It will have user logins and profiles for commenting.

CyberPEN

[Pineapple Case]

I was thinking about getting a Fon and putting it inside of a Domo-kun plushie.

http://www.amazon.com/Domo-Plush-inch-Smal...pd_bxgy_t_img_b

or a domo-kun storage box.

http://www.amazon.com/square-Domo-Kun-desi...920&sr=1-18

[Can't get into Hak5 Chat]

Haha thanks, I was hoping to chat with everyone. I really enjoy this community.

[Can't get into Hak5 Chat]

Hello everyone,

For some reason I am not able to get into the Hak5 Chat room with the webcams. Yesterday I was on all day with no problems. Is it down? I keep getting disconnected....(security). I know I couldn't get on it at work because my work blocks those ports, got the same message. Any ideas?

Thanks for the help ahead of time.