Posted: 8/10/2012 7:36:41 PM EDT
|
I know many of us here is SF don't normally wander into the cesspool of GD. Occasionally there's a gem of a thread there. This is one of them that I was fortunate enough to stumble across: http://www.ar15.com/forums/t_1_5/1235571_Ask_a_computer_forensics_expert_anything.html&page=1 Although it cost me many hours of time to read through, I learned a ton –– and I'm an IT guy. bcauz3y occasionally posts here in SF, but with this thread he's done all of ARFCOM a great service. I highly recommend you check this thread out if you're worried about maintaining your privacy. Mods: Sorry for the cross-post, but I thought this relevant to the SF interests and I've found no better thread here yet on this topic. Everybody else: please don't post anything here –– go there if you have any questions –– after reading through all of the info first, of course. -Slice |
Good call Slice 
Bcauz3y really knows his stuff. Like you, I'm in IT also-but I learned a ton from that thread. ETA: I find it extremely gratifying to learn from someone who is at the very top of their craft. He has probably forgotten more about IT security than I'll ever know. |
|
Pretty interesting thread.
A while back i got into pentesting - if i were a bad guy, bcauz3y would be the guy trying to track how I did what i did/ got what i got. 1. If you keep your shit patched and watch your web surfing and email attachments, you'll likely be ok against the typical script kiddie. Antivirus is good. 2. if you or your company are being targeted, your screwed. You can stop me 100 times, but i'll get in on my 101st try. So much easier to attack than defend. I like what i do, but don't really forensics. Those guys are weird 
|
| Bcauz3y definitely knows his shit. I am FAR from an expert, but have dabbled in some of the things he talks about in his posts, and he gets over my head on a lot of it. It is a loooong post, but certainly worth reading and following the recommended links. I learned a great deal from this one thread. |
HomeSlice you f*cking bastard!!!  That thread cost me hours of my life... It spans about 10 months and 30 pages. It was one of the best threads I have seen here. A lot of useful information there... I'm only an amateur but I really enjoyed it... Thanx for the link.
|
|
I'm a telecommunmications engineer and ocasionally have to work with our security guys. It 's interesting some of the stuff they find. We record 100% of our internet traffic, which is an unbelievable feat, and even many of out IT guys don't beleive it happens (the retention time in minimal but we are talking mutiple OC-3s (155 Mbps)). Once case was an employee visiting a missspelled political site, which loaded (with his permission) Java on his machine, turning his machine into a bot, and searching out internal network and sending the results to China. . It's also amazing how much porn is downloaded. In fact they intentionally don't block a few major trusted porn sites to reduce the hunt for new porn sites.
OTOH, our mission critical IP network has only been hacked from the outside once (due to careless engineering) and they was detected and shut down within an hour. And we do pass data between our mission critical network and the internet through very limited paths. |
|
Quoted: HomeSlice you f*cking bastard!!! That thread cost me hours of my life... It spans about 10 months and 30 pages. It was one of the best threads I have seen here. A lot of useful information there... I'm only an amateur but I really enjoyed it... Thanx for the link. LOL! Same thing happened to me! |
|
Quoted:
Lately I've started learning how to use TOR and some other similar services. Then you should definitely read all 30 pages of that thread. TOR is all but useless in maintaining PERSEC/OPSEC, all the exit nodes are controlled by known hackers or governments. |