Skip to main content

Logo

CIS 75 - Principles of Computer Security (Shared screen with speaker view)
Eduardo Fernandez
50:25
google is acting up with me
Kyle B
50:35
awesome!!
Ryan Mock
50:38
great
Sam Perez
50:43
pretty fun
Kyle B
50:56
yeah
Sam Strelitz
50:57
I enjoyed it.
Joseph Calcagno
57:37
hey guys sorry im late
Kyle B
58:10
human error
Bobby Garcia
58:30
token ring forever!!!!!
Kyle B
58:44
human didn’t plan for network load PEBCAK
Kyle B
01:04:27
can we determine the risk of replacing/not replacing network capability and weigh that against the cost of new equipment?
Joseph Calcagno
01:07:25
need onsite servers
Jacobs Otto
01:07:43
loop
Joseph Calcagno
01:09:33
disaster recovery plan
Ivers Spivey
01:13:16
Someones zombie box?
Eduardo Fernandez
01:19:20
hack wars
Jacobs Otto
01:21:32
What year is it?
Jacobs Otto
01:22:27
Telnet
Jacobs Otto
01:22:28
yeah haha
Bobby Garcia
01:22:42
if you only knew...
Jacobs Otto
01:22:55
R.I.P.
Unknown Speaker
00:00
01:24:56 Ciarán Farley: filezilla wont let me copy my auth.log off of my debian server through my vpn, says no permission
Joseph Calcagno
01:26:05
any loss
Joseph Calcagno
01:30:25
Ive seen ransomware deployed through a .doc attachment in an email
Unknown Speaker
00:00
01:31:22 Ciarán Farley: i dont see any sign in attempts on my server
Kyle B
01:34:38
siemens was developing nukes for hitler back in the day
Bobby Garcia
01:34:43
siemens- it creates and distroys
Kyle B
01:36:25
YES
Sam Strelitz
01:36:28
Yes
Chris Copus
01:36:30
yup
Ryan Mock
01:36:32
a time or two
Ivers Spivey
01:36:34
No.
Bobby Garcia
01:36:35
yes
Joseph Calcagno
01:36:35
yes
Sam Perez
01:36:37
yes
Kevin Cameron
01:39:03
My mom got hit with scareware. Thankfully it wasn't any more than a few scripts.
Chris Copus
01:39:03
The many different computers I had to fix in high school because many teenage girls couldn't tell the difference between "song.mp3" and "song.exe"
Kyle B
01:40:14
cabrillo is the last non https site
Jacobs Otto
01:40:22
Right though?
Ivers Spivey
01:40:24
lol
Unknown Speaker
00:00
01:41:37 Ciarán Farley: I got a popup on my phone that knew its model number
Chris Copus
01:47:37
o/
Ivers Spivey
01:47:39
heck yeah.
Ryan Mock
01:47:41
yeah
Ivers Spivey
01:47:46
i run who everytime i log into a server.
Philip Lawrence
01:47:48
root!
Sam Perez
01:47:51
i believe so
Kyle B
01:47:55
shows you which user you are logged in as
bruce hartman
01:47:57
user logged in as and permissions
Tony Farrell
01:48:17
searches for who is logged in
Sam Strelitz
01:49:47
Yes
Sam Strelitz
01:49:54
also how do they see the output? Does it show up in the http return stream?
Ivers Spivey
01:51:46
oh damn
Sam Strelitz
01:52:21
Opens a port or more ports?
Chris Copus
01:52:23
basically turning off their connection and firewall?
Kyle B
01:52:25
takes the firewall down and dos a files
Kyle B
01:52:38
*DL
Unknown Speaker
00:00
01:56:45 Ciarán Farley: how many times can you run "su" before it locks you out ?
Chris Copus
02:01:05
do people really fall for that?
Chris Copus
02:01:14
wait, what am i saying...
Chris Copus
02:03:10
does that make YOU the threat agent if you successfully run that?
Bobby Garcia
02:03:29
human error
Kevin Cameron
02:03:35
No, they're the target
Sam Strelitz
02:03:35
no
Edgar Austodillo
02:03:47
no
Bobby Garcia
02:03:48
no
Sam Strelitz
02:03:51
threat agent sent the hoax message to the victim
Unknown Speaker
00:00
02:03:55 Ciarán Farley: I agree with kevin
Philip Lawrence
02:04:00
no
Ivers Spivey
02:04:02
possibly because human has been social eng
bruce hartman
02:04:04
email is the threat, typer is threat agent
Ivers Spivey
02:10:24
lol brute force for sure
Ivers Spivey
02:13:10
or project the display on their face
Luis Ayala
02:13:18
WAR Games best movie
Jacobs Otto
02:14:03
^
Ivers Spivey
02:15:17
lol yes. it was for an alarm system. I said i didnt need one i have a gun and dogs...the person hung up.
Bobby Garcia
02:16:02
i do not need dish tv
Chris Copus
02:16:13
HA
Bobby Garcia
02:16:15
or your timeshare
Kyle B
02:16:37
calls about FBI investigations
Vance Kelly
02:16:45
probably hacked email of someone who had my email: "far away from home, locked out of cards, need you to send money"
Kyle B
02:16:45
of late
Unknown Speaker
00:00
02:17:10 Ciarán Farley: dont gov agencies always mail you stuff ?
Jacobs Otto
02:17:28
Not for safety reasons, but because they're stuck in the 80's
Chris Copus
02:17:35
You get a fat letter saying "you screwed, son"
Jacobs Otto
02:18:12
Well obviously they haven't seen you LinkedIn... heh... :/
Kyle B
02:18:17
I get calls and texts about cutting my student loans in half if i pay a little now….I never took out student loans
Jacobs Otto
02:18:18
*my
Kyle B
02:18:31
lol
Luis Ayala
02:18:54
how did they get the phone # on the first place
Joseph Calcagno
02:19:50
dont use yahoo
Jacobs Otto
02:21:32
HA!
Bobby Garcia
02:22:12
old website
Bobby Garcia
02:22:13
https://web.archive.org/web/20020702114140/http://mail.cabrillo.edu:8088/
Ivers Spivey
02:29:19
Dictonary attack?
Unknown Speaker
00:00
02:48:26 Ciarán Farley: is the leignth constand no matter the leignth of the input ?
Unknown Speaker
00:00
02:50:00 Ciarán Farley: 256
Michael Matera
02:50:41
Ctrl-d
Unknown Speaker
00:00
02:52:07 Ciarán Farley: how do you salt it ?
Joseph Calcagno
02:56:31
so hashes are just to insure integrity
Unknown Speaker
00:00
02:57:27 Ciarán Farley: is that how backup programs that only backup the changes work ?
Luis Ayala
03:02:03
https://www.theverge.com/2017/2/23/14712118/google-sha1-collision-broken-web-encryption-shattered
Jacobs Otto
03:04:05
rip MD5
Joseph Calcagno
03:08:11
also seems what type of file
Joseph Calcagno
03:08:49
nooo my username
Jacobs Otto
03:09:50
nooo my hash
Unknown Speaker
00:00
03:10:22 Ciarán Farley: why does ubuntu still use md5 for their iso verifications ? to make sure your downloaded file is correct ?
Jacobs Otto
03:11:07
getting warmer
Ivers Spivey
03:11:22
hashcat it?
Ivers Spivey
03:11:28
then use gpu or cpu
Jacobs Otto
03:11:45
My password is the most secure password. Not even I know it
Ivers Spivey
03:11:50
lol
Ryan Mock
03:15:28
:-(
Jacobs Otto
03:19:13
How many lists am I put on for downloading those?
Unknown Speaker
00:00
03:19:24 Ciarán Farley: so thats a shortut so you dont have to take the time to generate hashes of a bunch of passwords ?
Joseph Calcagno
03:19:58
noo my name
Ryan Mock
03:20:06
uh oh
Jacobs Otto
03:20:07
hunter2 isn't on there
Ryan Mock
03:20:08
brb
Kyle B
03:20:09
1111?
Joseph Calcagno
03:20:17
lol ryan
Ryan Mock
03:20:38
enterprise
Jacobs Otto
03:21:33
Jokes on you guys, my go to password is all 500 of these, no spaces.
Luis Ayala
03:21:42
keeps is your friend my friends
Luis Ayala
03:21:53
keepass
Joseph Calcagno
03:22:12
mmmm packet sniffing
Kyle B
03:23:38
what is the etiquette for tech support when someone is entering a password? just look away?
Jacobs Otto
03:23:57
That's what I've always done, out of courtesy.
Joseph Calcagno
03:23:58
no you are trusted i hope lol
Kyle B
03:24:26
i do that and some people think i am not paying attention to them
Joseph Calcagno
03:24:33
or have them reset it when youre done
Jacobs Otto
03:24:52
lol then you'll see then in 2 hours because they forgot their new password
Ivers Spivey
03:24:56
or listening to how many keystrokes..
Kyle B
03:24:58
lol
Joseph Calcagno
03:25:08
if you have to reboot a bunch of times and have to keep bugging them
Kyle B
03:25:54
a woman can’t accuse a man of that in japan anyway
Luis Ayala
03:25:59
just use a rubber ducky and install a keylogger
Unknown Speaker
00:00
03:27:49 Ciarán Farley: is there a way for a device to see if its packets are being sniffed ?
Kyle B
03:28:24
manipulate
Luis Ayala
03:29:10
https://www.social-engineer.org/framework/general-discussion/
Joseph Calcagno
03:29:52
doesnt work on me once I realize what your trying to do
Luis Ayala
03:30:22
you guys should look up jason street he has some great social engineering stories
Kyle B
03:30:40
was this classification generated by algorithms?
Luis Ayala
03:31:23
*jayson street
Jacobs Otto
03:31:41
I was going to say, what does Friday Night Lights have to do with this
Kyle B
03:32:18
buffer overflow!
Luis Ayala
03:32:23
lol
Jacobs Otto
03:33:25
Inception?
Joseph Calcagno
03:34:04
yes
Kyle B
03:34:18
agreed
Joseph Calcagno
03:35:18
but he was just a distraction
Kyle B
03:36:06
there was an air of urgency in that pretext
Joseph Calcagno
03:36:25
he was betting on that it was someones birthday today
Joseph Calcagno
03:37:40
wonder what wouldve happened if he asked robert whos bday
Luis Ayala
03:38:15
we can learn a lot from kevin mitnick’s books too
Jacobs Otto
03:38:20
"Jim's, obviously!"
Luis Ayala
03:40:10
ist was apache sprouts( software )
Kyle B
03:40:12
thats how i got into the hot tub in the apartment complex across the way in the neighbor hood i grew up in
Kyle B
03:40:30
social engineering
Kyle B
03:40:40
pretext