Re: Max Vision: White hat went to the "Darkside".

From that article i gathered he was breaking the law before the said VNC exploit came out. He just stepped up the ante. But just because a massive exploit comes out it takes a very particular person to use it for malicious uses as opposed to helping people patch.

if your worried your a script kiddie i guess that's a problem, but i guess my definition of a script kiddie is someone that uses tools that other people make and really doesn't have an understanding of what they are doing. But using something like a port scanner or network analyzers does not make you a script kiddie on their own. If you are say using prepackage toolkit's and all you know is that it just works and have no clue whats going on i guess that would make you a script kiddie, or people that watch a video showing them how to crack wifi and they have no clue what they are doing or whats going on i would classify that way.

I think you mean would i read the book, i got the book for a read i enjoy reading various crime books, so far i haven't seen it as anything spectacular, I'm kinda waiting for the new kevin mitnick book coming out august as his previous 2 i thought were well written.

Re: Max Vision: White hat went to the "Darkside".

I'm solely going to address your third question, it being something I think about a lot.

My guide early on was this guide written by ESR - http://www.catb.org/~esr/faqs/hacker-howto.html

I'm cautious about referencing that guide here, I couldn't find reference to it anywhere on the site, which was suprising to me.

I'm also going to point you toward a Richard Stallman Essay - something I am also referencing with great caution - http://stallman.org/articles/on-hacking.html

Reading those two essays, hacking to me is about building something, and not just doing it creatively, uniquely, or insert positive non-conformist adjective here. But building something and working with it with a real and true understand of how it operates. This applies to me not only in the field of computing, but any field, I believe computer culture seems to have more hackers because the impact of hackers is more easily seen and spread on this particular platform.

Now how does that flip over to the security sense? To be effective, you have to have a deep understanding of how what ever your focus is works, a deep understanding. Then you have to construct something that breaks a system, but breaks it just enough. Considering many things about the system, some based on hard analysis but also based on your experience building. I think you can apply what I previously stated to systems other than computers.

Script Kiddes use, use and use blindly. They don't have a full understanding of what they are doing usually, and did not build what they are using.

Now how to actually become one? I myself am still working on that. How to know when you are one? I look foward to the responses to this thread. As well as any feedback I as to whether what I'm saying has any merit.