• Slipped and fell in the ice yesterday, in lots of pain today #
• RT @oncee: Twitter Mass Password Reset due to Phishing: http://isc.sans.org/diary.html?storyid=8137&rss #
• Internet down again. !@#*; @mediacom #fail #fail #fail #
• has #shmoocon envy #
• Weather permitting, I'm going to Springfield for #2600 meeting tonight; will anyone be there? #
• On my way 2 Springfield,MO; Red Robin 4 dinner, then #2600 meeting #
• I still use IE… to download FF #
• Searched B&N and Borders and no #2600 #

Powered by Twitter Tools

• Merry Wintereenmas!
  Let the games begin! #
• new episode of 24 is starting… please check reality at the door #
• Tips to watching #24 forget everything u know about technology #
• RT @pauldotcom Bid on Shmoocon ticket http://is.gd/77D9T All proceeds donated to Red Cross to help victims in Haiti #IhackedHaiti #
• Wish the weatherman would stop using words like snow, sleet, and freezing rain #
• Fw:|RT @HubSpot: ReTweet This to Win One of 3 Apple Tablets from @HubSpot http://bit.ly/dqLEhb #
• Fw:|RT @wantmoore: I've gotta get to work patenting and coding my new iPad apps: iPamprin and iMidol #
• Hab SoSlI' Quch! #

Powered by Twitter Tools

• Kids' first day back to school tomorrow is cancelled due to snow. #
• A new security system is being installed in my office; been beeping non-stop for a halfhour while they're working on another issue elsewhere #
• RT @CarMax is giving away a car. http://carmax.com/tweet for rules and details. RT and follow to enter. #
• RT @ComicTwit: Knowledge is knowing a tomato is a fruit; Wisdom is not putting it in a fruit salad. #
• RT @pauldotcom: Buying, Selling, Trading Shmoocon tickets? Visit our forum thread (http://is.gd/5MWoT) to find or sell the golden ticket #
• RT @TechCrunch: TechCrunch Giveaway: A Google Nexus One #TechCrunch http://bit.ly/4XzVxm #
• http://is.gd/5Pf3P – Interesting article about how safe air travel really is #
• RT @ThreePlayerGame: We're giving away another Star Trek Online Beta key tonight at 7pm Eastern. Just retweet this to enter. #
• Tales from Capt. Obvious: "Um… It's freakin' cold!"
  Tune in tomorrow when Capt. Obvious informs us, "Yup, still cold." #
• Grab you a Red Box free movie tonight! Two new (unconfirmed) codes: ABTS25 and SNSV25 #
• Anybody wanna join me in a team for the #smashthestack wargame? http://is.gd/5SEPJ #
• Schools cancelled again tomorrow? Don't ask me why, the road aren't bad. Guess it's just too frickin' cold! #
• Fw:|RT @darkuncle: javascript is just a variant: the standard (yes, there is one) is ECMAscript. There's even a standards doc! http://is … #
• Twitter ate my link http://is.gd/5SKZ7 #
• Anybody know if the #springfield, MO #2600 group still meets? #
• Looking for a team of #hackers to #hack with me in a #wargame by #smashthestack http://is.gd/5SEPJ #
• Internet's down at home and I have homework due tonight, so it's off to work for the rest of the night #
• It's Saturday! Guess where that means I am. Yup… working. #

Powered by Twitter Tools

Tonight for dinner we started with some grilled cheese sandwiches:

Then fried up some burgers on the griddle:

Then add some more cheese and put it all together:

And you have a Fatty Patty:

That one’s my wife’s.

Now I figure, everything’s better with bacon:

And so I present to you the Bacon Fatty Patty:

Hush now, I’m eating!

Bask in it’s juicy, greasy, cheesy, beefy, bacon-filled goodness and be filled!

In case anyone out there is interested, I’ve updated my resume to include recently obtained degrees and certifications.  Specifically, a couple of months ago I managed to obtain OSCP status, and today I graduated with my Associate of Science in Information Technology.

I’m continuing on to achieve my Bachelor’s by next summer and I hope to obtain another certification or two this year.

So, if anyone is looking for either an entry-level infosec position, or an experienced sysadmin position, check out my resume and drop me an email.

As I was perusing the Net this evening I discovered SmashTheStack was hosting a team-based CTF-style WarGame. Teams are given a remote box and need to secure it, but are required to keep at least 3 services at all times. Teams are given 24 hours to secure their boxes. After the grace period each team will attack the other teams’ boxes while defending their own. The goal is to take control of the other teams’ boxes and lock them out. Last man standing wins.

Personally, this sounds like a blast but I have no team. So who wants to hack with me?

I’m looking for up to four people willing to join me in this endeavor. I’m looking for people who have some experience in similar types of events. I will admit that I still have a lot to learn, though I do have some experience. Specifically, I have obtained my OSCP (Offensive Security Certified Professional) from Offensive Security. I also went to the Louisville Metro Infosec in 2009 and got 3rd place in their CTF.  I’ve been working in IT for over a decade now and currently work as a sysadmin for a small/medium size organization (~50 users).  I’m also going to school and taking other steps to focus my IT career more on InfoSec.

If this sounds like fun and you want to get to know some new people comment to this post and let me know you’re interested and what kind of experience you may have.  I’m looking for people with some experience and are just looking to have some fun.  Details of the event can be found here. Teams will be announced a week before the event, so we would need to form our team by the end of this week and get our application in.
So, wanna hack with me?

I’ve been asked for some good links to help learn x86 Assembly.  The main source I have been using is “Programming from the Ground Up” by Jonathan Bartlett.  The target audience for this book is people who don’t already have any programming experience.  It begins by explaining the basics of how a computer works, how the processor and memory work.  Then it goes through some basic Assembly, and later moves on to loops and functions similar to other programming books.  I haven’t finished it, but so far I’ve found it a great resource.

Another resource I’ve found but haven’t spent much time on is Webster’s Art of Assembly Language, which basically amounts to a list of other useful resources, including useful resources for Win32 Assembly.

Since my focus is on exploit development, the Assembly Language Primer for Hackers on SecurityTube is also an excellent resource.  This is a video resource that walks you through the basics of assembly, the stack, and eventually moves on to another series that gives the anatomy of a Buffer Overflow in the Buffer Overflow Primer.

And of course, if you ever need more resources, there’s Google.

• Goals for this coming year, part 1: Learn x86 Assembly #
• Goals for this 2010, part 2: Setup a hack lab and improve pentesting skills #
• Goals for 2010 part 3: Attend two Security cons and compete in their Hacking competitions. #
• Goals for 2010 part 4: Get involved in an OSS project. #
• Goals for 2010 part 5: Take my wife out on more dates. #
• Happy 10th Birthday Y2K! #
• Goals for 2010 part 6: Take the kids out more often #
• Goals for 2010 part 7: Create #
• Ok that's it, I refuse 2 go back 2 work this year #
• Goals for 2010 part 8: Don't be evil #
• Hey East Coast, it's bamed from the past. How's #2010? Are there flying cars yet? #
• Goals for 2010 part 9: Buy a minivan, or an SUV that'll seat 6 comfortably. #
• Goals for 2010 part 10: Um… well… come up with more goals. #
• Hey West Coast, it's bamed from the future. It's #2010, and still no flying cars #
• Taking Grant to se Avatar 3D #
• Anyone know of any good used book stores in Carthage? #
• Goals for 2010: the Finale – The same thing we do every year, Pinky, try to take over the world! #

Powered by Twitter Tools

OK, so I asked my family, “What are some more goals I can set for myself for next year?”  And Josef, my oldest son, said, “Come up with more goals.”  So, that’s pretty much it.

If you follow me on Twitter or Facebook you’ve already seen all these, but I thought I’d take some time to define these goals a bit more.  This way, you, my faithful follower (Hi, Mom & Dad!) might understand what I mean, plus writing it down gives them more meaning to myself as well, especially come December 2010 when I look back and think, “What the heck did I mean by that?”

Ok, once again a simple goal.  Basically, our family grew from 5 to 6 this year and we need better transportation seat us all comfortably.  We’ve currently got two cars, one only seat 5, the other seats 6 but nor comfortably.  So, I want a vehicle we can all comfortable fit in.

Um… ya, that’s pretty much it.