10.23.06
Daily Link List — 10/24/06
I find it funny that I originally registered this domain because I wanted a new email address... that was it... no intentions of a blog or anything else... I setup the blog here when I was working as the "IT Manager/Sys Admin" for a small marketing company.... At that time every morning (since mornings were relatively slow) I would browse forums, blogs, mailing lists, and news sites. I would compile a list of what I found interesting... New software, new sites, interesting stories... anything I was interested in... and I'd email it to a small group of friends that I had graduated college with... I eventually got tired of expanding the distribution list that I used so I created this blog and started posting a daily link list... I think that I may start putting up a "daily link list" from time to time again... Today I've got a number of things that don't really count as full blog postings... so I figured this was the best way to present the information.
A few days ago I blogged about building a security RSS feed.... That list has expanded to 161 feeds. I also learned that Newsfox, the software I promoted for reading RSS feeds in Firefox, had a few issues (including not yet having Firefox 2.0 support). In search of a new solution I came across Bloglines... I'm definately impressed. I keep it open in a tab all day long and the title of the page changes to inform me of new posts to my various feeds. I can also add search options.... so I have a feed that searches for this sites name and another for nCircle's name. Whenever anyone blogs about either of these, even if I'm not subscribed to the site... I receive notice... It's been useful a few times. I also like that you can easily share your feed list... (Not all feeds, just feeds marked public...). If you'd like to view my public feeds -- check them out.
While the page is now somewhat out of date... it's still quite the impressive page. It provides example 'Hello World' applications in nearly every language... From Assembly to C and C++... Python and PHP, PERL and Ruby. Shell languages (bash, dos batch, ksh) and even SQL langauges are present. It might not be overly useful (I grabbed it while looking at using Assembly to print to the screen), it's definately worth checking out if you have a few minutes to kill.
This software was released recently on a couple different mailing lists. Source Code, Windows Binaries and a PDF guide are all available from the site. Since I've yet to play with the software (which is still a beta), I've only read through the guide, I'll let the author sum it up. "Taof is a GUI cross-platform Python generic network protocol fuzzer. It has been designed for minimizing set-up time during fuzzing sessions and it is especially useful for fast testing of proprietary or undocumented protocols. Taof aids the researcher during the data retrieval process by providing a transparent proxy functionality that forwards and logs requests from a client to a server. After the data retrieval phase, Taof presents the logged requests and allows the user to specify the fuzzing points within the requests." It definately looks like it has potential.
Malware Analysis - Tools of the Trade (SANS Diary):
Just as the name says, the SANS handlers' asked people to submit the tools they use when working with malware analysis. The list is still growing so please jump over and submit tools you use. The list, to date, includes The Malware Analyst Pack, IDA Pro, Ollydbg, Regmon/Filemon and a few other tools. It's definately worth checking out and keeping an eye on over time.
That's all for today... just a few interesting things that I wanted to share...
Peace,
HT
