Bryce Galbraith
(Numerous letters here...)
Layered Security
bryce{at}layeredsec.com
SANS Institute BIO
LinkedIn Profile
(Numerous letters here...)
Layered Security
bryce{at}
SANS Institute BIO
LinkedIn Profile
Contributing Author
Authored/Co-Authored SANS Courses
National Debt Clock
OSF Data Loss - Latest Incidents
Toolz
- Aircrack-ng
- AlternateStreamView
- Anonymizer
- Anubis - Malware analysis
- BackTrack
- BCWipe
- BeEF - Browser Explotation Framework
- BinText
- BotHunter
- Browser Rider
- BrowserSpy
- Burp Suite
- BVSystems (wireless gear)
- Cain & Abel
- CellCrypt
- Certificate Patrol (Firefox Add-on)
- Cheat Sheets
- Command-line Fu
- Command-line Kung Fu
- DansGuardian
- DBAN - Darik's Boot and Nuke
- Deep Freeze
- DEFCON Toolz
- DNS Advisor Pro
- DNSViz
- DomainTools
- DumpSec
- Echo Mirage
- Edge Security Tools
- ElcomSoft
- Emerging Threats (Snort Sigs)
- Ettercap
- ExifTool
- ExifTool GUI
- Exploit Database
- Exploit-Me
- Ferret and Hamster
- FireBug
- Firesheep
- Firewall Builder
- Flexi Spy
- FOCA Online (search metadata in files)
- Forensic Acquisition Utilities
- Free Rainbow Tables
- Free Rainbow Tables
- GFI LANGuard
- Google Hacking Database (GHDB)
- Google Sets
- GPO Extensions (3rd party)
- Hacme Web Apps
- Hashcat
- Hiren's BootCD
- inSSIDer
- IP Blocks by Country
- IPv6 Tunnelbroker
- IronKey
- IRS
- ISR-Evilgrade
- Karmasploit
- Katana
- Kon-Boot (password reset tool)
- L0phtCrack
- Layer Four Traceroute
- Linux Command References
- Live Sysinternals
- Macshift
- Mallory (mitm tool)
- Maltego
- Malware Bytes
- memoryze
- MetaSploit
- Metasploit Decloaking Engine
- MMC
- Nemesis
- Netdude
- Netifera
- NetMon
- netsh
- NetWitness Investigator
- Nikto
- NirSoft - freeware utils
- NMap
- Notepad++
- NoVirusThanks
- Offensive Security Exploit Archive
- Open Source Security Information Management
- OpenDNS
- Ophcrack
- OSSEC
- PacketLife.net Armory of Toolz
- Pass-the-Hash Toolkit
- pathping
- Pentest Labs: Network Penetration Lab
- Pentest Labs: Web Application Edition
- Pipl
- PortableApps
- Proxy Strike
- PWDumpX
- py2exe
- Radmin
- Rainbow Tables (web interface)
- RainbowCrack
- raWPacket
- Reaver (WPS/WPA cracker)
- Recuva - File Recovery
- RedCurtain
- reDuh
- Robotex
- RootKits (Unix)
- RootKits (Windows)
- saminside
- Samurai Web Testing Framework
- Scapy
- Screen command (Unix)
- Search Engine List
- Secunia PSI
- Security Focus Bug Database
- ServerSniff
- Sigcheck
- SiteDigger
- SNScan
- Sociel-Engineer's Toolkit (SET)
- Splunk
- Spoof Card
- SQL Cheat Sheets
- sqlmap
- SQLScan v1.0
- sslsniff
- sslstrip
- STerm
- Sulley
- SuperScan v4.0
- SysInternals Tools
- System Explorer
- tcpreplay
- tcpxtract
- TextPad
- The Cassandra Tool
- ThrashLM
- ThreatExpert (automated malware analysis)
- Top 100 Network Security Tools
- TrapCall
- TrueCrypt
- Ubuntu Man Pages
- UNetbootin
- Unix Utils for Windows
- URLVoid
- VMMap
- VMWare ThinApp
- VoIP Hopper
- Volatility Framework
- Volatility Framework Plugins
- WarVOX
- Web Application Attack Framework (W3AF)
- Web Application Testing
- Web Historian
- WebHistorian
- Webtunnel
- Wepawet - web-based malware analysis
- WEPBuster
- WhoIsHostingThis.com
- Wigle
- WillHackForSusi
- Windows Power Shell
- Windows XP Commands
- winexe
- WirelessKeyView
- wlan2eth
- WMAP
- WMIC
- Wordlist Generator
- Wordlists (1)
- Wordlists (2)
- Wordlists (3)
- Wordlists (4)
- Wordlists (5)
- Wordlists (6)
- Wordlists (7)
- Wordlists (Millions of words)
- Wordlists (US Citites)
- XSSF
- Yersinia
Links
- A "Grey Hat" Guide
- Anti-Rookit
- Bitpipe.com
- Black Hat
- BlackViper
- Browser Security Handbook
- Center for Internet Security
- Cryptography Portal (Wikipedia)
- Cybercrime.gov (US DoJ)
- Dark Operator
- Data Loss Database
- Dataloss Database
- Deal Extreme
- DEFCON
- DISA
- DistroWatch
- DoD Cyber Crime Center
- EventID
- Great quote
- Hakin9 Magazine
- Integrity Global Security
- Market Share
- Milw0rm
- Mitre's Measurable Security
- NewsNow (31000+ news sources)
- NIST Computer Security Division
- OSF Data Loss Database
- Packet Storm
- Packetstan
- Privacy is Dead - Get Over It (Part I)
- Privacy is Dead - Get Over It (Part II)
- Process Library
- RFID (1)
- RFID (2)
- SANS - Consensus Audit Guidelines (CAG)
- SANS - Securing The Human
- SANS 20 Critical Security Controls
- SANS Computer Forensics
- SANS Information Security Buyers Guide
- SANS Institute
- SANS Internet Storm Center
- SANS Top 20
- SANS Top 25 Programming Errors
- SANS Top Twenty Critical Controls for Effective Cyber Defense: Consensus Audit
- Secunia
- Security Laboratory: Thought Leaders
- TaoSecurity
- The Ethical Hacker Network
- The Evolution of the Web
- The Honeynet Project
- User Account Control Explained
- VirusTotal
- VulnerabilityAssessment.co.uk
- White Wolf Security
- Wikileaks
Articles & How To's
- Backtrack 4 Tutorials
- Black Hat Archives
- Covert Channels
- DEFCON Archives
- Erasing hard drives
- Google Guide Quick Reference
- Hacking demo videos (John Strand)
- How to setup a secure web tunnel
- IDA Pro Book
- Identifying Load Balancers in Penetration Testing
- Injecting Meterpreter into Excel files
- Linux From Scratch
- Lock picking issues
- Metasploit Unleashed (free training)
- Metasploit's route pivot
- NTLMv2 - Demystified
- Pass-the-hash with Meterpreter
- Port-redirection how-to
- SecurityTube - security videos
- Simultaneous Sniffing of Multiple 802.11b Channels with Kismet
- Social-Engineer.org
- Wirelessdefence.org
Conferences
Useful Stuff
- 10 add-ons for Firefox: Privacy and security
- 7 Steps to a Pain-Free Life: How to Rapidly Relieve Back and Neck Pain
- Acronym Finder
- AV Test
- BetterPrivacy (deletes "super cookies")
- Bluecoat's K9 Web Protection (free)
- Browser Security Test
- Cellphone radiation info
- Data Execution Prevention
- Evernote
- FreeMind
- FreeNAS
- Geekonomics: The Real Cost of Insecure Software
- Gethuman Database
- Google Blog Search
- Google Body Browser
- Google Book Search
- Google Reader
- How to save your keyboard after a spill
- HTTPS Everywhere Firefox Add-on
- IIS 7.0 Config Ref
- Inbox Zero Presentation
- KeePass Password Safe
- Kindle
- LIFE photo archive by Google
- Lifehacker
- Linux Directory Structure
- MindMapper
- National Do Not Call Registry
- No more lower back pain!
- OptOutPrescreen
- P90X iPhone App
- P90X Workout
- Packetlife.net packet captures
- Power plugs around the world
- Quotations Page
- SANS Buyers Guide
- SpaceMonger
- Stay Safe Online
- TRX Suspension Trainers
- US Constitution
- US Debt Clock
- US Public Debt
- Use Bluetooth headsets to make VoIP calls on your computer
- Username Check
- Virus Bulletin
- Wall outlet w/ USB ports
- Wireless Spectrum (PDF)
- Wireless Spectrum (PNG)
- Zimbra
- ZoomIt
Just for Fun
- "Series of Tubes"
- Apple - control freak
- Best Tech Guy Caller
- Best-ever cease and desist!
- Brian Regan (comedian)
- Bubble Wrap
- Certified Application Security Specialists
- Despair, Inc.
- DIY Demotivator
- Larry David - How to Handle Annoying Bluetooth Guys
- Let Me Google That For You (lmgtfy)
- Pandora
- PicLens
- R2D2 Projector
- Sheepdog conspiracy
- Surprised Kitty
- Tech Supoort Cheat Sheet
- ThinkGeek
- White Hat Hacker Man
- Will it blend?
- ¡ʇı dılɟ
Blog Archive
-
►
2011
(46)
-
►
February
(11)
- Black Ops: How HBGary wrote backdoors for the gove...
- FBI Pushes for Surveillance Backdoors in Web 2.0 T...
- Global Energy Industry Hit In “Night Dragon” Attac...
- International Monetary Fund (IMF) calls for a US D...
- Egypt's Assault on the World-Wide Web
- Nmap 5.50 released! (major update)
- Microsoft says RIP Windows XP AutoRun
- TSA Told To Tell Children That Groping Them Is A G...
- Pwn2Own lets Chrome in, after all
- EFF Uncovers Widespread FBI Intelligence Violation...
- As Egypt goes offline US gets internet 'kill switc...
-
►
January
(25)
- Interesting virtual machine escape hacking demo vi...
- Passenger cleared after TSA checkpoint stare-down ...
- US cyberwar firing range to demo by July
- Erasing drives should be quick and easy
- Apple Plans Service That Lets IPhone Users Pay Wit...
- WSJ - What They (Smart phone apps) Know
- Abine - Privacy Suite
- Wall Street Journal: What They Know
- IPv4 Exhaustion Report
- Wikileaks volunteer detained and searched (again) ...
- 7 Cyber Crime Facts Executives Need to Know
- One-Third of All Malware in Existence Appeared in ...
- Google Goggles Solves Sudoku Puzzles
- Text Message of 'Death' Threatens Phone Security
- $1.5 billion "Spy Center" under way
- Demo of CANVAS owning Android phone
- Special Webcast: A Taste of SANS Security 660 - Ad...
- Online anonymity will come as standard on a Tor ro...
- Add Google SSL Search Provider to Firefox Search B...
- Is Google poised to take over NFC-based mobile pay...
- Softbank brings NFC payment technology to iPhone 4...
- The Stripping of Freedom: A Careful Scan of TSA Se...
- What is Traitorware?
- Android Mobile Malware Has Botnet-like Traits
- Hotmail Data Loss Reveals Cloud Trust Issues
-
►
February
(11)