ToorCon Seattle (Beta)
 
The Infoz
Who:
 ToorCon supporters and local hackers.
What:
 ToorCon Seattle (Beta), need we say more?
When:
 May 11th-13th
Where:
 Pioneer Square, Seattle, WA
Why:
 Seemed like a good idea at the time
How:
 We've just reached 150 RSVPs so ToorCon Seattle is now full.

 
Sponsors

Gold
IO Active
Leviathan Security
ShmooCon


Silver
Errata Security


Bronze
No Starch Press
O'Reilly Media

A taxonomy & tool for automated vulnerability chaining and path discovery

Vulnerabilities are occurring with increasing frequency and the resources required to manage mitigation are increasing in parallel.

Unfortunately, current best practices still evaluate the majority of vulnerabilities as unique unrelated events. This method of evaluation is an understandable choice but does not accurately reflect how the vulnerabilities may be used by attackers. In this project we attempted to find a way to evaluate combinations of vulnerabilities in an automated fashion.

We created a taxonomy that allows us to describe vulnerabilities and their connections to each other. We then used these descriptions to create a graph showing the interconnections between the vulnerabilities and used that to find pathways to complete system compromise.

The system we used to judge the effectiveness of this approach is a feature rich web application which allows a user to quickly and easily describe a vulnerability and its interactions and then explore its relationship to other vulnerabilities.

Toby Kohlenberg

Toby Kohlenberg is a senior information security specialist for Intel Corporation. He has extensive experience in penetration testing, incident response, architecture design and review, IDS, new technology analysis and various other things that paranoid geeks are likely to spend time dealing with. In the last couple years he has been responsible for developing security architectures for world-wide deployments of technologies including secure WLANs, Windows 2000/2003/Active Directory, and IDS technologies and solutions. He was responsible for the creation and training of a global intrusion analysis team for Intel and frequently mentors for the SANS institute for many different certification tracks. He is a handler for the Internet Storm Center and a co-author of the book Snort 2.1 from Syngress. He currently holds the CISSP, GCFW, GCIH, GCIA, and Sexy Beast certifications.


Copyright © 2007, ToorCon, Inc. Please direct comments and questions to h1kari.