Cyber Security Training Center, Ft. Detrick: For those about to die, we salute you!

Tuesday, October 13, 2015

For those about to die, we salute you!

Well, it's been a good run (20 years worth),

SHA-1 is about to die. The costs of hacking this venerable hashing algorithm have dropped down (thanks to high-end graphics processors) to the point of it being very vulnerable.

Solution: Make sure your stuff is SHA-2 or SHA-3 compatible.

IOW:

Hardware compatible with SHA-2/SHA-3
Server software updates supporting SHA-2/SHA-3
Client software support for SHA-2/SHA-3
Custom application code support for SHA-2/SHA-3

Let's see if the smart administrators at OPM, Target, Sony, Anthem, etc are paying attention. (Any bets?)

http://thehackernews.com/2015/10/sha-1-collision-attack.html

Cyber Security Training Center, Ft. Detrick

Pages

Tuesday, October 13, 2015

For those about to die, we salute you!

CISSP for Dummies

CompTIA A+ 2009 In Depth

Exam Cram for Security+

TCP/IP Guide

No-Tech Hacking

Hacking for Dummies

The Red Team Field Manual

Metasploit: The Penetration Tester's Guide

CISSP ALL-IN-ONE

Security+ for Dummies

Exam Cram Security+ Practice Questions

The Code Book

The Art of Deception

Hacking, The Art of Exploitation

The Linux Command Line

Schneier: Liars & Outliers

Official ISC(2) CISSP Guide

Exam Cram Review Questions for CISSP

Exam Cram CISSP Study Guide

Social Engineering (a plug for Chris)

Botnets, The Killer Web App

The Basics of Hacking and Penetration Testing

Star Trek Technical Manual

Schneier: Carry On