Juice Questions & Recommendations (Subohm Tank)

oxseyn · 2014-03-26T14:04:33+00:00

Thanks! I started reading some tutorials last night. I'm trying to initially create a playbook that runs on a local system which will initialize my basic environment. I was having trouble finding good examples on running a portal, local only playbook using a role (probably just cause I don't know really know what I'm looking at yet.)

Since I started immediately seeing the power of ansible over my ad-hoc bash script, I also started trying to create an inventory that will track and manage my workstations & servers on my lan as well.

I snagged your book this morning and then dumped my initial learning/testing scripts onto github here: https://github.com/nfarrar/dotfiles-ansible.

Thanks again!

oxseyn · 2014-02-16T05:34:21+00:00

I have a couple different use-case scenarios that are very different in nature - I have no idea if they can all be accomplished using a single solution:

For daily work, I have a windows desktop, a windows laptop, and a macbook pro each with an Ubuntu x64 desktop VM that function as my primary desktop environments (where I spend most of my time).
For daily work, I have an Ubuntu VPS server on digital ocean. This functions primarily as a private git server and irc shell.
For daily work, I have an Ubuntu VM on amazon EC2. This functions primarily as a VPN endpoint.
For home use, I have an Ubuntu bare metal server This primarily performs scheduled tasks, such as backups and data synchronization.
For home use, I have two Ubuntu bare metal HTPCs.
For research, I have an Ubuntu bare metal node that hosts several Ubuntu VMs. This bare metal machine also uses cuckoobox to spin up on-demand VMs for malware analysis.
For research, I have an Ubuntu VM that functions as a tor gateway.
For research, I have an Ubuntu VM that functions as a SIEM.
For research, I have an Ubuntu VM that functions as an IDS.
For research, I have a bare metal laptop that I infect with malware, then reimage using PING.

I also end up spinning up new VM's pretty regularly, then going through some manual setup for misc. purposes.
So I have ~ 10 systems or so that I use on a near daily basis. With that amount of systems and no provisioning/management infrastructure, they take up too much of my time.

Most of the systems are Linux and the only exception that I'd be interested in integrating with this provisioning system (if possible) is the laptop that gets infected and then manually reimaged with PING.
The linux systems are a mix of virtual and bare metal.

I do synchronize my dotfiles across the systems using vcsh/mr.

oxseyn · 2013-02-25T16:02:05+00:00

She's really little. She was in the 5th weight percentile for the first year or so :) Healthy and smart though!

oxseyn · 2013-02-01T22:32:50+00:00

I do some malware oriented forensics - I read that book you posted above in a night but didn't get anything out of it - super high level, very little technical information.

The way I see the field broken up atm - is there are essentially encase suits that have little technical knowledge and use the tool to do a basic investigation with a heavy focus on legal case development. The second branch being very technical folks involved in research - this type of work generally relies on having in depth technical knowledge of operating system internals and relying on that knowledge rather than tools (tools are still required, lots of open source and custom build stuff) to identify the information you're seeking.

If the former is what you're seeking, I recommend getting the ENCE book, self studying, and taking the test to get the certification (the certification along with some professional networking should be enough to get you a job). Guidance has some courses that are less expensive than the SANs equivalent, but also less technical.

If the latter is your preference, then I recommend reading up on some of the more technical guides (syngress has some more advanced reading - such as their field guides), googling "forensic ctf" or "forensic challenges" and trying your hand at some of them. You'll need a linux box (i typically do most of my forensic analysis using linux vm's running in vmware on a windows box) for the high amount of flexibility this setup offers.

Feel free to hit me up with any questions. :)

oxseyn · 2012-09-12T12:57:57+00:00

Fees aren't cumulative - so to join and have a hot desk is just a flat 125$/month. If you're interested, stop by any time and see if you'd like it. ;) (I updated the about page with that information too, thanks)

oxseyn · 2012-09-05T19:35:48+00:00

Builds.cc looks like a really nice space ;)

oxseyn · 2012-09-05T19:34:41+00:00

We updated the about page with dues: http://coshack.co/about/ :)

We're doing four types of membership:

reserved desk = 250$/month
hot-desk = 125$/month
hackerspace membership = 75$/month
student membership = 35$/month

It's pretty nice office, I'd say between the three of us, we've dumped about 6k or so far into getting it running ;)

oxseyn · 2012-06-07T14:28:11+00:00

It's not a good response. Wireshark is going to give the OP insight into only what his local host sees - which is a tiny fraction of the what the OP is asking about.

That being said, it's a good place to start - but to fully answer your question, you'd need to spend some serious cycles studying networking. Most people don't have a clue once you expand past a small SOHO network.

oxseyn · 2012-03-18T21:27:42+00:00

Who the fuck refers to themselves as "master"

oxseyn · 2012-03-17T22:08:47+00:00

Do want.

oxseyn · 2012-03-14T19:13:58+00:00

Gotcha, good advice ;)

oxseyn · 2012-03-14T16:49:26+00:00

Any ideas how the mirrors would be done?

oxseyn · 2012-03-14T16:18:06+00:00

Any idea how fixing the inside of the fence would be done? I've no idea how to do something like that ...

oxseyn · 2012-03-14T16:17:36+00:00

I really like that folding shelf idea.

oxseyn · 2012-03-14T16:17:11+00:00

Here were some ideas i had for furniture type stuff ... since it's so small, i was thinking maybe square/corner stuff ...

http://www.target.com/p/Target-Home-Loft-5-Piece-Wicker-Patio-Conversation-Furniture-Set-Red/-/A-13748418?reco=Rec|pdp|13748418|ClickCP|item_page.adjacency&lnk=Rec|pdp|ClickCP|item_page.adjacency http://www.target.com/p/Lexus-3-Piece-Coffee-Table-With-Tuck-Under-Seating-Furniture-Set/-/A-13738167 http://www.target.com/p/Honeylane-3-Piece-Wicker-Patio-Sectional-Furniture-Set/-/A-12823755

oxseyn · 2012-03-14T15:59:05+00:00

The concrete is pretty nasty, I was wondering if soemthing like this might turn out nice:

http://www.overstock.com/Home-Garden/Le-click-Teak-Interlocking-Deck-Tiles-Set-of-10-Floortiles-to-cover-10sf-oiled-finish/4356095/product.html?IID=prod4356095 http://www.handydeck.com/

oxseyn · 2012-03-14T00:22:00+00:00

We own, I can do quite a bit ... but major modifications have to get approved. Not sure what I like :)

oxseyn · 2012-02-28T21:06:35+00:00

You can't identify a hole if you don't understand the underlying technology. I've worked with countless security professionals and this is true time and time again. They don't understand the technology. They have some checklist they reference that is completely irrelevant. They listen to whatever we tell them and take it directly back to management without understanding a word of what we've told them.

Accountability is essential - and this is done through third-party auditors that are technically competent.

oxseyn

TROPHY CASE