Follow our team on Facebook
Track our tweets on Twitter
Connect with us on LinkedInToday, creating a truly secure IT infrastructure requires access to highly specialized knowledge, intelligence, and expertise in order to stay at least one step ahead of the evolving risks. Because Praetorian is an authority on information security, your business can leverage our subject matter expertise to solve these challenging business problems. To that end, we invite you to enjoy the following information security resources.
Information Security Resources
We trust you will benefit from the following information security resources.
Highly specialized knowledge, intelligence, and expertise
Free Security Tools
Quick Command and Control (C2) Trojans
Creator and Project Lead: Josh Abraham
The following C2 Trojans are used to execute commands on a compromised host from a controlled server. C2 Trojans can use many different applications and techniques to be effective. Several methods were developed in order to avoid detection, including: DNS, HTTP GET, HTTP POST and Twitter. The C2 Trojans are unidirectional, meaning the compromised host will ask the server for commands to run and then execute them without providing output back to the server.
DNS method is available now. Additional methods to follow.
DNS Method HTTP Method Twitter Method
OWASP JBroFuzz
Creator and Project Lead: Nathan Sportsman
JBroFuzz is a web application fuzzer for requests being made over HTTP and/or HTTPS. Its purpose is to provide a single, portable application that offers stable web protocol fuzzing capabilities.
Learn more about OWASP JBroFuzz
Mobile Projects
Scalable Tailored Application Analysis Framework
Creator and Project Lead: Ryan W. Smith
There has been no shortage of Android malware analysis reports recently, but thus far that trend has not been accompanied with an equivalent scale of released public Android application tools or frameworks. To address this issue, we are presenting the Scalable Tailored Application Analysis Framework (STAAF), released as a new OWASP project for public use under Apache License 2.0. The goal of this framework is to allow a team of one or more analysts to efficiently analyze a large number of Android applications. In addition to large scale analysis, the framework aims to promote collaborative analysis through shared processing and results.
View the STAAF Presentation
Books
Hacking Exposed 7th Edition
Contributing Author: Nathan Sportsman
A fully updated edition of the world's bestselling computer security book
Hacking Exposed 7: Network Security Secrets and Solutions is filled with all-new information on today's most devastating attacks and proven countermeasures. The book covers: advanced persistent threats; infrastructure hacks; industrial automation and embedded devices; wireless security; the new SCADA protocol hacks; Microsoft Windows Server 2010; Web 2.0; Ubuntu Linux; hardware; Cisco; RFID; malware; and more! The 7th Edition also features a new “5 Deployments” approach for the first time that provides five key actions for every countermeasure—focused on five areas of expertise: 1. Network Security, 2. Server Security, 3. Mobile Security, 4. Endpoint Security, 5. Web Security
Hacking Exposed 7 applies the authors' internationally recognized and highly sought-after computer security methodologies, technical rigor, and from-the-trenches experience to making computer technology usage and deployments safer and more secure for businesses and consumers. It uncovers new, cutting-edge computer security issues.
"If there was en Encyclopedia Britannica of computer security, it would be Hacking Exposed."
Marty Roesch, creator of the Snort tool
"Informational gold."
Bruce Schneier, CTO, Counterpane Internet Security, Inc.
"Real security is proven by trying to break it, and few sources will show you how to do that better than Hacking Exposed."
Thomas Ptacek, Researcher at Arbor Networks
Learn more about Hacking Exposed 7th Edition
Hacking Exposed 6th Edition
Contributing Author: Nathan Sportsman
The tenth anniversary edition of the world's bestselling computer security book! The original Hacking Exposed authors rejoin forces on this new edition to offer completely up-to-date coverage of today's most devastating hacks and how to prevent them. Using their proven methodology, the authors reveal how to locate and patch system vulnerabilities.
The book includes new coverage of ISO images, wireless and RFID attacks, Web 2.0 vulnerabilities, anonymous hacking tools, Ubuntu, Windows Server 2008, mobile devices, and more. Hacking Exposed 6 applies the authors' internationally renowned computer security methodologies, technical rigor, and "from-the-trenches" experience to make computer technology usage and deployments safer and more secure for businesses and consumers.
"A cross between a spy novel and a tech manual."
Mark A. Kellner, Washington Times
"The seminal book on white-hat hacking and countermeasures... Should be required reading for anyone with a server or a network to secure."
Bill Machrone, PC Magazine
"A must-read for anyone in security... One of the best security books available."
Tony Bradley, CISSP, About.com
Learn more about Hacking Exposed 6th Edition
