lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list] 
Message-ID: <120910.1312731383@turing-police.cc.vt.edu>
Date: Sun, 07 Aug 2011 11:36:23 -0400
From: Valdis.Kletnieks@...edu
To: coderman <coderman@...il.com>
Cc: full-disclosure@...ts.grok.org.uk, "Cal Leeming \[Simplicity Media Ltd\]"
	<cal.leeming@...plicitymedialtd.co.uk>, gregorydevans@....com
Subject: Re: An enemy of the infosec community needs to be
	brought to justice

On Sat, 06 Aug 2011 23:17:25 PDT, coderman said:
> "Gregory Evans wins Defcon 19 Charlatan of the Year!"
> 
> http://twitter.com/#!/attritionorg/status/99977286002016257

Wow, that takes some doing in this industry. :)

> On Wed, Feb 2, 2011 at 6:54 PM, coderman <coderman@...il.com> wrote:

> > http://attrition.org/errata/charlatan/gregory_evans/
> >
> > Gregory D. Evans / LIGATT Security
> > A supposed "hi-tech hustler", "WORLD'S NO 1 HACKER" and convicted
> > felon (Bureau of Prisons #13432-112), Gregory Dante Evans has invented
> > himself as some form of hacker with the ability to break into anything
> > and spin that supposed knowledge into advising companies on security.

Lot of those in the industry too..

> > In reality, Evans and his company have little real knowledge beyond
> > pedestrian hacking techniques found in plagiarized books and beginner
> > hacking texts.

The ironic part is that "pedestrian hacking techniques" *will* be sufficient to
break into the vast majority of places. And the places that it isn't enough are
not likely to be hiring his crew anyhow.  So you end up with "able to break
into anything that's likely to pay you for security advice".  Good work, if you
can get it. ;)

Though the tip-off *should* be that anybody who's the self-professed "world's
number one hacker" is saying it out in the open.  For the most part, the *real*
top 10 or 15 guys are being very quiet about it (yes, you know know who they
are, but if they're in the top 10, they aren't issuing frikking press releases
about the fact ;)


Content of type "application/pgp-signature" skipped

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ