PacketNexus.com

SSD, The Future is Now!

Posted on August 23, 2010 by Jason Lewis

Computers these days have lots of memory, fast CPUs and big hard drives. In almost every way, they are better than computers from five years ago. The problem is that when you use them, they feel like the same old computers. They are faster, but you still feel like you’re waiting for them to boot, waiting for programs to load, waiting for games to load, waiting for them to shut down, and waiting for them to reboot. Enter Solid State Drives (SSD) and all that is about to change.

It’s 2010 and SSD prices seem to be dropping quickly. I picked up a 64GB Kingston SSDNow V Series at Newegg for $94 after rebate. For me, when new technology drops below $100, I don’t feel like I’m overspending for the cutting edge. $50 off the regular price helps too.
Continue reading →

Posted in Hardware | Tagged boot drive, new technology, solid state drive, ssd, ssd myths, ssds, ubuntu fast boot, ubuntu ssd | Leave a comment

5 reasons to take that government cyber security job

Posted on August 17, 2010 by Jason Lewis

Mike Subelsky had a great list of reasons you might not want to take a government cybersecurity job, I followed up with a few additions. It got me thinking that it wasn’t all bad, there are actually reasons that someone might enjoy a career working with the government. So, here are a few reasons that you might enjoy a cybersecurity job with Uncle Sam.
Continue reading →

Posted in Opinion | Tagged cyber, cyber security, government job, job security, patriotism | Leave a comment

Todo.txt, a command line todo list

Posted on August 16, 2010 by Jason Lewis

Todo.txt is a shell based todo list manager. It reads and writes to text files, which makes it portable and easy to edit with other tools. I run a copy on my Mac, but you can run it anywhere you have a shell, for example on a VPS that you can access remotely.
Continue reading →

Posted in Tools | Tagged cli todo, cli todolist, geektool, mac tool, todo list, todo.txt | Leave a comment

The government leads in cyber-boring

Posted on August 14, 2010 by Jason Lewis

Mike Subelsky has a great blog post where he writes about why you might not want a government cybersecurity job. I agree with all his points and even have some to add.
Continue reading →

Posted in Opinion | Tagged cutting edge technology, productivity, shell account | 3 Comments

The Cybermen are coming!

Posted on August 10, 2010 by Jason Lewis

In a recent AP article, a researcher describes a hypothetical scenario where given $100 million dollars he could build a cyber army in two years. Link here. I found this interesting because the tone of the article suggested that cyber armies like this don’t already exist.
Continue reading →

Posted in Opinion | Tagged cyber army, cyber security, cyberspace, cyberwar, espionage, Opinion | Leave a comment

How to build a covert network with OpenVPN

Posted on August 5, 2010 by Jason Lewis

There are many uses for a covert network, for this hypothetical scenario we are corporate spies and we need to exfiltrate data from our assets inside the target corporations network. I don’t think the concepts here are new, but I haven’t seen any decent how to’s for a setup like this.

I’m going to skip some steps that aren’t relevant to the configuration and use of OpenVPN, the reader needs to accept that my corporate target has a compromised host on their network. This includes how the VPN is hidden from the target, how root access is obtained, etc. Those details are left to the reader. I will discuss possible solutions, but not how to implement them. This configuration could just as easily be used to share pictures between family members.
Continue reading →

Posted in HowTo | Tagged corporate espionage, corporate spies, corporate target, exfiltrate, HowTo, openvpn, possible solutions | Leave a comment

Ubuntu LDAP client How To

Posted on June 7, 2010 by Jason Lewis

This works with Ubuntu 10.04 clients using an OSX Snow Leopard OpenLDAP server. It should work with other variants, but I had such a terrible time finding documentation for ubuntu and osx, that I decided to post this.
Continue reading →

Posted in HowTo | Tagged HowTo, LDAP, ldap client, ldap protocol, ldap server, snow leopard, ubuntu | Leave a comment

EFW NAT Loopback

Posted on January 11, 2010 by Jason Lewis

To allow users on internal interfaces to access the external IP, you need to add a Source NAT rule. This is sometimes referred as NAT Loopback.

* Source: Network of your LAN subnet
* Destination: GREEN/ORANGE
* Service: ANY
* NAT: Auto

Works with Endian Firewall Community 2.3. It probably applies to other similar FWs like IPCop and Smoothwall.

Posted in Configs | Tagged Configs, EFW, endian firewall, loopback, NAT | Leave a comment

Network Analysis 2.0: Staying Ahead of the Threat Curve with AIRE

Posted on August 28, 2009 by Jason Lewis

INTRODUCTION
Automation, innovation, reaction and expansion (AIRE) are the foundation of the next generation of analysis techniques and tools – Network Analysis 2.0. The importance of data network analysis is often overlooked, but it impacts many areas including cyber defense, cyber intelligence, law enforcement / investigative analysis, and financial and critical infrastructure. Cyber attacks are conducted daily by organized groups around the world, and network analysis is important for maintaining total cyber situational awareness. AIRE enables analysts to make huge strides in data analysis, maintain a competitive advantage and stay one step ahead of attackers.
Continue reading →

Posted in Papers | Tagged AIRE, competitive advantage, critical infrastructure, cyber, cyber attacks, cyber defense, cyber situational awareness, network analysis, offensive operations, Papers, situational awareness, traffic explosion | Leave a comment

Getting an image via tftp at the rommon prompt

Posted on May 6, 2009 by Jason Lewis

* rommon 1 > IP_ADDRESS=192.168.11.11
* rommon 2 > IP_SUBNET_MASK=255.255.255.0
* rommon 3 > DEFAULT_GATEWAY=192.168.11.1
* rommon 4 > TFTP_SERVER=192.168.11.100
* rommon 5 > TFTP_FILE=c2600-io3-mz.122-9.bin
* rommon 6 > tftpdnld

Posted in Configs | Tagged cisco, Configs, rommon, tftp | Leave a comment