SecurityTwits Weekly Recap - 6/13 - 6/20

Here's what happened over the last week ending Wednesday. Don't forget, if you want to get my attention, tweet with the following tags; #infosecq for questions, #infoseccfp for cfps, and #infosecjobs for, well, jobs.

  1. @securitytwits @c3llardoor anyone know where I can get the OSCP training for free I have no way of paying for this thanks
  2. 3 downtown Dallas job openings available: InfoSec Security Assessor, InfoSec Engineer, & Pen Tester Contact for details (cc @securitytwits )
  3. RT @NAISG_DFW: 3 downtown Dallas job openings available: InfoSec Security Assessor, InfoSec Engineer, & Pen Tester Contact for details (cc @securitytwits )
  4. RT @c7five: I'm hiring! Join before #DEFCON & I'll pay for your trip. View the current @SpiderLabs job openings here:  http://hire.jobvite.com/Jobvite/jobvite.aspx?b=nrTojiwO com/Jobvite/jobvite.aspx?b=nrTojiwO
  5. @securitytwits I'm immediately available for new employment. Looking for travel/telework Resume:  http://chrissanders.org/resume/ org/resume/
  6. RT @pwpslade: #infosecq Does the EU cookie law  http://goo.gl/Gl02o apply to UK business with hosting abroad and/or vice-versa?
  7. @pwpslade @securitytwits only for companies actually registered in the uk. Of course as other eu countries make this law they will be same
  8. RT @OBrientg I am looking for a comprehensive SSH configuration/hardening run card/procedure, or best/common practice. TIA!
  9. @securitytwits @OBrientg Disable v1, disable root login, ACL the port. Disable unused auth types.
  10. @securitytwits @OBrientg step one: audit the patches your distro adds. 95% of the time, that is the source of problems.
  11. RT @Patories: Principal is ComputerWorld #16 best IT places to work.. My Team is hiring -  https://secure05.principal.com/hr/recruiting/ext/jobDetailLink.faces?jid=213584&seqid=1 cipal https://secure05.principal.com/hr/recruiting/ext/jobDetailLink.faces?jid=213504&seqid=1 t/jobDetailLink.faces?jid=213584&seqid=1 and https://secure05.principal.com/hr/recruiting/ext/jobDetailLink.faces?jid=213504&seqid=1
  12. RT @leEb_public: Dear Lazywebs (cc @securitytwits). Can anyone recommend (free) static code analysis tools for php & javascript?
  13. @securitytwits Thanks to @wireghoul @grecs @nuWARP for their suggestions: graudit, Yasca, CodeSecure & DevBug. Going to check them all out!
  14. RT @McAfeeCareers: Love to travel? Senior Professional Services Consultant (Cyber) job in Reston, VA  http://mcaf.ee/h8uqn  #infosecjobs #mcafeejobs
  15. Help us shape what stats and analysis we collect from the #PANICproject. Answer this 1 question survey.  https://docs.google.com/spreadsheet/viewform?formkey=dFh1Ulp0ZWc2NzY1NUc4SS1udlhLQUE6MQ omsecuritytwitsviewform?formkey=dFh1Ulp0ZWc2NzY1NUc4SS1udlhLQUE6MQ @securitytwits
  16. RT @Krenner: @TimelessP @securitytwits send a dm if ur an exp dev/vuln researcher - mobile is a plus, as is a clearance, great pay, cool mission/company
  17. Just so you know, I am not planning a SecurityTwits get together in Las Vegas during BSides/DefCon.
  18. Finally, if you want to meet F2F, ping me. I'll be at BSides all day the 24th and 25th and DefCon through the weekend.