TAMAN PERPADUAN

السلام عليكم ورحمة الله وبركاته,,,

تتشرف الدار العربية للتنمية الادارية

بدعوتكم للمشاركه في:

Mini MBA in Strategic Planning

ماجستير التخطيط الاستراتيجي المهني المصغر

جامعة ميزوري - الولايات المتحدة الأمريكية

موعد الانعقاد :1 – 12 نوفمبر 2020م

بهدف : التعرف على الأساليب العلمية والعملية الحديثة المستخدمة فى عملية التخطيط الإستراتيجى، تنمية المهارات فى ممارسة الأساليب الحديثة لتحقيق الكفاءة والفعالية فى مجال التخطيط الإستراتيجى للمنظمة، مساعدة الإدارة على تطبيق إستراتيجيتها من خلال فاعليتها فى ترجمة الخطط الإستراتيجية عبر مجموعة الأهداف التشغيلية القابلة للقياس والتى تحكم سلوك الإدارة وإتجاهات أدائها، يعقد هذا البرنامج المهني ليعرض في اطاره العام الى أساليب التخطيط الإستراتيجى، إعداد الخطة الإستراتيجية، قياس الأداء المتوازن وفقا للمنظور المعاصر، الإستراتيجيات الإدارية وأساليب تحليلها وتقييمها، تطوير الأداء الإقتصادى والمؤسسى لمؤسسات القطاع العام والحكومى، التميز فى الأداء المؤسسى، دور القيادات الإدارية فى تحسين جودة الأداء المؤسسى، أساليب الرقابة على الخطة الإستراتيجية، التخطيط والمتابعة وتقييم الأداء، تخطيط ومراقبة الإنتاج فى ضوء المعايير والمتغيرات العالمية.

مستهدفين في ذلك :وكلاء الوزارات ورؤوساء مجالس الإدارة ومديرو العموم ومديرو إدارات التخطيط والتطوير والمتابعة والمرشحون لشغل تلك الوظائف وكل ذات الصلة.

وبهذه المناسبة يسعدنا دعوتكم للمشاركة وتعميم خطابنا على المهتمين بمــوضـوع الماجستير وإفادتنا بمن تقترحون توجيه الدعوة لهم

لمزيد من المعلومات يمكنكم التواصل مع

نائب مدير التدريب

أ / سارة عبد الجواد

جوال– واتس اب : 00201062992510

هاتف : 0020237800693 – 0020237800583

فاكس : 0020237800573 – 0020235866323

--
You received this message because you are subscribed to the Google Groups "رؤية2030للدارالعربية" group.
To unsubscribe from this group and stop receiving emails from it, send an email to 2030-howidahr808+unsubscribe@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/2030-howidahr808/ca352562-3e23-4cbb-9e15-c25e7b43c50dn%40googlegroups.com.

Hi everyone,

Great news! I will be mentoring SANS 575: Mobile Device Security and Ethical Hacking in Luxembourg on Thursday evenings 18:00-20:00, starting from January 15, 2015.

Mentor classes are special, 10 week-format SANS classroom sessions that give the students time to absorb and master the same material with the guidance of a trained security professional.

Students receive all the same course materials used at SANS conferences and study at a more leisurely pace, so students will have:

Hardcopy set of SANS course books
Mentor Program study materials
Weekly Mentor led sessions

Prior to the weekly Mentor-led classroom sessions, students study SANS course material at their own pace. Each week, students meet with other professionals in their hometown area and the SANS mentor, who leads topical discussions pointing out the most salient features of the weekly material studied, provides hands-on demonstrations, and answer questions. The Mentor's goal is to help student's grasp the more difficult material, master the exercises, demonstrate the tools and prepare for GIAC certification.

On SANS SEC575, we will learn about mobile device infrastructures, policies and management, we will see the security models of the different platforms, like the data storage and file system architecture. We will also see how to unlock, root and jailbreak mobile devices in order to prepare them for data extraction and further testing. In the second half of the course, we will learn how to perform static and dynamic mobile application analysis, the usage of automated application analysis tools and how to manipulate application behavior. Last but not least, we will see how to perform mobile penetration testing that includes fingerprinting mobile devices, wireless network probing and scanning, attacking wireless infrastructures, using network manipulation attacks and attacks against mobile applications and back-end applications.

For more info, here is the link for the class: http://www.sans.org/mentor/class/sec575-luxembourg-15jan2015-david-szili
My Mentor bio: http://www.sans.org/mentor/bios#david-szili

Information on the class, special discounts and applying for the class: szili_(dot)_david_(at)_hotmail_(dot)_com

Additional info can be also found at: https://www.sans.org/mentor

Some special price is also available for this course. A few examples: http://www.sans.org/mentor/specials

Best regards,

David

Such low price. Very SANS. Much learning. Wow!

PDF is safe to open

This is an oldie. I think this started at the time of macro viruses. Still, people think opening a PDF from an untrusted source is safer than opening a Word file. For details why this is not true, check: https://www.cvedetails.com/vulnerability-list/vendor_id-53/product_id-497/Adobe-Acrobat-Reader.html

On an unrelated note, people still believe PDF is integrity protected because the content cannot be changed (compared to a Word document).

Image stolen from Kaspersky

Java is secure

One of the best ones. Oracle started marketing Java as a safe language, where buffer overflows, format strings and pointer-based vulnerabilities are gone. Unfortunately, they forgot to tell the world that instead of "unsafe programs developed by others" they installed their unsafe program on 3 billion devices.

Stay away from rogue websites and you will be safe

This is a very common belief I hear from average people. "I only visit some trusted news sites and social media, I never visit those shady sites." I have some bad news. At the time of malvertising and infected websites, you don't have to visit those shady sites anymore to get infected.

Don't use open WiFi

I have a very long explanation of why this makes no sense, see here. Actually, the whole recommendation makes no sense as people will connect to public WiFis, no matter what we (InfoSec) recommend.

The password policy nightmare

Actually, this topic has been covered by myself in two blog posts, see here and here. Long story short: use a password manager and 2-factor authentication wherever possible. Let the password manager choose the password for you. And last but not least, corporate password policy sux.

Sites with a padlock are safe

We tell people for years that the communication with HTTPS sites are safe, and you can be sure it is HTTPS by finding a randomly changing padlock icon somewhere next to the URL. What people hear is that sites with padlocks are safe. Whatever that means. The same goes for WiFi - a network with a padlock is safe.

Use Linux, it is free from malware

For years people told to Windows users that only if they would use Linux they won't have so much malware. Thanks to Android, now everyone in the world can enjoy malware on his/her Linux machine.

OSX is free from malware

It is true that there is significantly less malware on OSX than on Windows, but this is an "economical" question rather than a "security" one. The more people use OSX, the better target it will become. Some people even believe they are safe from phishing because they are using a Mac!

Updated AV + firewall makes me 100% safe

There is no such thing as 100% safe, and unfortunately, nowadays most malware is written for PROFIT, which means it can bypass these basic protections for days (or weeks, months, years). The more proactive protection is built into the product, the better!

How to backup data

Although this is one of the most important security tips which is not followed by people, my problem here is not the backup data advise, but how we as a community failed to provide easy to use ways to do that. Now that crypto-ransomware is a real threat to every Windows (and some OSX) users, even those people who have backups on their NAS can find their backups lost. The only hope is that at least OSX has Time Machine which is not targeted yet, and the only backup solution which really works.

The worst part is that we even created NAS devices which can be infected via worms ...

Disconnect your computer from the Internet when not used

There is no need to comment on this. Whoever recommends things like that, clearly has a problem.

Use (free) VPN to protect your anonimity

First of all. There is no such thing as free service. If it is free, you are the service. On another hand, a non-free VPN can introduce new vulnerablities, and they won't protect your anonymity. It replaces one ISP with another (your VPN provider). Even TOR cannot guarantee anonymity by itself, and VPNs are much worse.

The corporate "security tips" myth

"Luckily" these toxic security tips have infected the enterprise environment as well, not just the home users.

Use robots.txt to hide secret information on public websites

It is 2016 and somehow web developers still believe in this nonsense. And this is why this is usually the first to check on a website for penetration testers or attackers.

My password policy is safer than ever

As previously discussed, passwords are bad. Very bad. And they will stick with us for decades ...

Use WAF, IDS, IPS, Nextgen APT detection hibber-gibber and you will be safe

Companies should invest more in people and less into magic blinking devices.

Instead of shipping computers with bloatware, ship computers with exploit protection software

Teach people how to use a password safe

Teach people how to use 2FA

Teach people how to use common-sense

Conclusion

Computer security is complex, hard and the risks change every year. Is this our fault? Probably. But these kinds of security tips won't help us save the world.

More articles

After 7 years of Contagio existence, Google Safe Browsing services notified Mediafire (hoster of Contagio and Contagiominidump files) that "harmful" content is hosted on my Mediafire account.

It is harmful only if you harm your own pc and but not suitable for distribution or infecting unsuspecting users but I have not been able to resolve this with Google and Mediafire.

Mediafire suspended public access to Contagio account.

The file hosting will be moved.

If you need any files now, email me the posted Mediafire links (address in profile) and I will pull out the files and share via other methods.

P.S. I have not been able to resolve "yet" because it just happened today, not because they refuse to help. I don't want to affect Mediafire safety reputation and most likely will have to move out this time.

The main challenge is not to find hosting, it is not difficult and I can pay for it, but the effort move all files and fix the existing links on the Blogpost, and there are many. I planned to move out long time ago but did not have time for it. If anyone can suggest how to change all Blogspot links in bulk, I will be happy.

P.P.S. Feb. 24 - The files will be moved to a Dropbox Business account and shared from there (Dropbox team confirmed they can host it )

The transition will take some time, so email me links to what you need.

Thank you all
M

More info

Why vlang? V is a featured, productive, safe and confortable language highly compatible with c, that generates neat binaries with c-speed, the decompilation also seems quite clear as c code.
https://vlang.io/

After open the binary with radare in debug mode "-d" we proceed to do the binary recursive analysis with "aaaa" the more a's the more deep analys.

The function names are modified when the binary is crafted, if we have a function named hello in a module named main we will have the symbol main__hello, but we can locate them quicly thanks to radare's grep done with "~" token in this case applied to the "afl" command which lists all the symbols.

Being in debug mode we can use "d*" commands, for example "db" for breakpointing the function and then "dc" to start or continue execution.

Let's dissasemble the function with "pD" command, it also displays the function variables and arguments as well, note also the xref "call xref from main"

Let's take a look to the function arguments, radare detect's this three 64bits registers used on the function.

Actually the function parameter is rsi that contains a testing html to test the href extraction algorithm.

The string structure is quite simple and it's plenty of implemented methods.

With F8 we can step over the code as we were in ollydbg on linux.

Note the rip marker sliding into the code.

We can recognize the aray creations, and the s.index_after() function used to find substrings since a specific position.

If we take a look de dissasembly we sill see quite a few calls to tos3() functions.
Those functions are involved in string initialization, and implements safety checks.

tos(string, len)
tos2(byteptr)
tos3(charptr)

In this case I have a crash in my V code and I want to know what is crashing, just continue the execution with "dc" and see what poits the rip register.

In visual mode "V" we can see previous instructions to figure out the arguments and state.

We've located the crash on the substring operation which is something like "s2 := s1[a..b]" probably one of the arguments of the substring is out of bounds but luckily the V language has safety checks and is a controlled termination:

Switching the basic block view "space" we can see the execution flow, in this case we know the loops and branches because we have the code but this view also we can see the tos3 parameter "href=" which is useful to locate the position on the code.

When it reach the substr, we can see the parameters with "tab" command.

Looking the implementation the radare parameter calculation is quite exact.

Let's check the param values:

so the indexes are from 0x0e to 0x24 which are inside the buffer, lets continue to next iteration,
if we set a breakpoint and check every iteration, on latest iteration before the crash we have the values 0x2c to 0x70 with overflows the buffer and produces a controlled termination of the v compiled process.

Read more

TAMAN PERPADUAN

Isnin, 31 Ogos 2020

ماجستير التخطيط الاستراتيجي المهني المصغر جامعة ميزوري - الولايات المتحدة الأمريكية موعد الانعقاد :1 – 12 نوفمبر 2020م للتسجيل 00201062992510

SANS SEC575 Mentor Class

More articles

One Reason Why InfoSec Sucked In The Past 20 Years - The "Security Tips" Myth

PDF is safe to open

Java is secure

Stay away from rogue websites and you will be safe

Don't use open WiFi

The password policy nightmare

Sites with a padlock are safe

Use Linux, it is free from malware

OSX is free from malware

Updated AV + firewall makes me 100% safe

How to backup data

Disconnect your computer from the Internet when not used

Use (free) VPN to protect your anonimity

The corporate "security tips" myth

Use robots.txt to hide secret information on public websites

My password policy is safer than ever

Use WAF, IDS, IPS, Nextgen APT detection hibber-gibber and you will be safe

Conclusion

More articles

Files Download Information

Ahad, 30 Ogos 2020

Vlang Binary Debugging

Wajarkah nama setiap taman yang mempunyai 'Perpaduan' di lorongnya dihapuskan dan hanya digunakan Taman Perpaduan?

Pengikut

WAKIL RAKYAT

Arkib Blog