January 21, 2016


      NEOISF February 17th, 2016 Meeting

—< NORTHEAST OHIO INFORMATION SECURITY FORUM MEETING
—< Wednesday February 17, 2016
—< 6:30 PM – 8:00 PM
—< Pizza and social start 6:00 PM
—< Location: OEC at 4205 Highlander Pkwy Richfield, OH 44286
—< Open to everyone and free as always

The Northeast Ohio Information Security Forum will hold our monthly meeting at the above date and time.

Agenda:

Python: Journey into Mastery (We’ll Do It Live!)
by Charles Yost from Binary Defense

A 45 minute overview, starting with basic project layout and editor selection and finishing with a live programming demo. Targeted towards non-programmers who want to learn the basics of Python in order to utilize it for daily tasks. Other resource for continued learning will be covered as well.

Charles’s, BIO:
Charles Yost is currently a Security Developer at Binary Defense Systems. He has worked in the IT industry for over 10 years in a wide variety of roles including: Printer Technician, VoIP Systems Administrator, .Net Developer, and Web Developer. Throughout his life his number one passion is learning new skills. He can often be found researching and learning, attempting to keep up with the quickly evolving field of technology. Charles enjoys teaching and talking to others about technology and it’s many uses. He is a member of NEOISF, and attends as many InfoSec conferences as he can justify with his wife.

 

 

Angler exploit kit
By Tyler Hudak

 

 

Don’t forget to come early, starting at 6:00 PM, for food and soda, sponsored by TrustedSec.

Another great meeting from NEO Info Sec Forum – we hope to see you there!

 

– NEOISF Board –



del.icio.us|Digg|Furl|ma.gnolia|RawSugar|reddit|Spurl|Google|StumbleUpon



January 6, 2016


      NEOISF January 20th, 2016 Meeting

—< NORTHEAST OHIO INFORMATION SECURITY FORUM MEETING
—< Wednesday January 20, 2016
—< 6:30 PM – 8:00 PM
—< Pizza and social start 6:00 PM
—< Location: OEC at 4205 Highlander Pkwy Richfield, OH 44286
—< Open to everyone and free as always

The Northeast Ohio Information Security Forum will hold our monthly meeting at the above date and time.

Agenda:

Port Scanning the Hermit Kingdom: Or What NMAP Can Teach Us About Geopolitics
by Thomas Pieragastini

This talk will center on a project that has been active since July, which involves attempting to understand internal North Korean conditions through the use of nmap, and the scanning of the entire North Korean IP range. In the process of undertaking this project not only was some interesting information gathered about North Korean internal political practices, postures and responses to crisis, but also a significant amount was learned about port scanning hostile and well defended networks, as well as learning a little bit about code on the side.  In this presentation the lessons learned and the challenges encountered will be reviewed within the wider discussion of the importance of the use of technical tools to understand the world outside of the technical realm.

Thomas’s bio:
Thomas Pieragastini currently works in threat intelligence, a background in independent security research, surveillance and security studies and holds a PhD in Philosophy.  Coming from academic studies in geopolitical dynamics and political theory he developed an interest in the technical realm, eventually transitioning into working in infosec full time, and developing an obsession with all things offensive security related.

 

History of WRT and Wireless Mesh protocols
by Alex Kot

This talk will go over the history of WRT firmware and the vast amount of projects created from the open source contributors.  I will also mention other router firmware projects (Non-WRT).  After that I will go into the history of MANET (Wireless Mesh protocols).  I will mention the various development the open source community provided to modern routing.

Alex’s bio:
Currently works at a Credit Union and has been in information technology for about 10 years.  He is fond of modifying embedded devices, low level concepts, and weird science.

 

Don’t forget to come early, starting at 6:00 PM, for food and soda.

Another great meeting from NEO Info Sec Forum – we hope to see you there!

 

– NEOISF Board –



del.icio.us|Digg|Furl|ma.gnolia|RawSugar|reddit|Spurl|Google|StumbleUpon



December 3, 2015


      NEOISF December 16th, 2015 Meeting

—< NORTHEAST OHIO INFORMATION SECURITY FORUM MEETING
—< Wednesday December 16, 2015
—< 6:30 PM – 8:00 PM
—< Pizza and social start 6:00 PM
—< Location: OEC at 4205 Highlander Pkwy Richfield, OH 44286
—< Open to everyone and free as always

The Northeast Ohio Information Security Forum will hold our monthly meeting at the above date and time.

Agenda:

Gamify Security Awareness pt2
by Mike Woolard from OEConnection

Last month we covered how the idea for the Hack.Jam event we put together came about, all the events we ran, and some of the results of those events.  Part 2 will look at why I think the whole concept worked and the detail of the applications and games we used and how we ran the training.  We will take a look at various tools used including OWASP ZAP, Security Shepherd, bWapps and Webgoat.

Mike’s bio:
Mike is a security analyst who has worked in the IT field for 16+ years.  14 of those years were spent in various IT roles including SysAdmin, SysEngineer, DBA, and NetEngineer.  That experience has helped him in his current role, where Michael plays an integral part in all areas of the organization to help secure the processes and procedures.  Michael manages risk assessments and pentests of the various web applications OEC builds, and leads the security awareness & education program where he designed many workshops and puts on many events.  Mike has worked towards various certifications including the CISSP and CEH and is a contributing member of many local security organizations including Infragard, NEOISF, Clevesec and the Information Security Summit.

 

Ansible – Getting in over our heads
by Charles Yost from Binary Defense

A 45 minute deep dive into Ansible. The inner workings, all the possiblities, and how to really get into some trouble with it. Jam-packed with examples, this talk is intended to be a living cookbook/cheatsheet for when Ansible has you over a barrel, or it’s your turn in one.

Charles’s, BIO:
Charles Yost is currently a Security Developer at Binary Defense Systems. He has worked in the IT industry for over 10 years in a wide variety of roles including: Printer Technician, VoIP Systems Administrator, .Net Developer, and Web Developer. Throughout his life his number one passion is learning new skills. He can often be found researching and learning, attempting to keep up with the quickly evolving field of technology. Charles enjoys teaching and talking to others about technology and it’s many uses. He is a member of NEOISF, and attends as many InfoSec conferences as he can justify with his wife.

 

Don’t forget to come early, starting at 6:00 PM, for food and soda.

Another great meeting from NEO Info Sec Forum – we hope to see you there!

 

– NEOISF Board –



del.icio.us|Digg|Furl|ma.gnolia|RawSugar|reddit|Spurl|Google|StumbleUpon



October 30, 2015


      NEOISF November 18th, 2015 Meeting

—< NORTHEAST OHIO INFORMATION SECURITY FORUM MEETING
—< Wednesday November 18, 2015
—< 6:30 PM – 8:00 PM
—< Pizza and social start 6:00 PM
—< Location: OEC at 4205 Highlander Pkwy Richfield, OH 44286
—< Open to everyone and free as always

The Northeast Ohio Information Security Forum will hold our monthly meeting at the above date and time.

Agenda:

Gamify Security Awareness
by Mike Woolard from OEConnection

October was Cyber Security Awareness Month, and instead of the run of the mill policy and paperwork signoff, we decided to train and spread the word in a more effective way, by making a game of it.  OEC held various training sessions and security games/events throughout the month culminating in a grand event centered around a CTF competition, sponsored by OEC & SecureState, that involved everything the employees learned throughout the month.  We were able to draw interest from all sides of the house – tech, non-tech, & executives and did it all without it being mandatory.  This talk will cover what was done, how we did it, what worked, what didn’t and what

Mike’s bio:
Mike is a security analyst who has worked in the IT field for 16+ years.  14 of those years were spent in various IT roles including SysAdmin, SysEngineer, DBA, and NetEngineer.  That experience has helped him in his current role, where Michael plays an integral part in all areas of the organization to help secure the processes and procedures.  Michael manages risk assessments and pentests of the various web applications OEC builds, and leads the security awareness & education program where he designed many workshops and puts on many events.  Mike has worked towards various certifications including the CISSP and CEH and is a contributing member of many local security organizations including Infragard, NEOISF, Clevesec and the Information Security Summit.

 

Tool Dump <aka> Making Heads Explode
Dave has Been busy over the past few months – with the release of the PenTesters Framework, new Unicorn attacks, the attack platform, and more – this talk will go over the latest and greatest, how to use them, and how to be most effective on offense and defense.
Dave’s Bio:
David Kennedy (@hackingdave) is founder and principal security consultant of TrustedSec – An information security consulting firm located in Cleveland Ohio. David was the former Chief Security Officer (CSO) for a Fortune 1000 where he ran the entire information security program. Kennedy is a co-author of the book “Metasploit: The Penetration Testers Guide,” the creator of the Social-Engineer Toolkit (SET), and Artillery. Kennedy has presented on a number of occasions at Black Hat, Defcon, DerbyCon, ShmooCon, BSIDES, Infosec World, Notacon, AIDE, ISACA, ISSA, RSA, Infragard, Infosec Summit, Hack3rCon and a number of other security-related conferences. Kennedy has been interviewed by several news organizations including CNN, The Katie Couric Show, CNBC, Fox News, Fox Business, Bloomberg, Huffington Post, Neil Cavuto, Special Report with Bret Baier, On the Wirte with Greta, Chris Wallace, and BBC World News. Kennedy was formally on the Back|Track development team and Exploit-DB team and co-host of the Social-Engineer.org podcast. Kennedy is one of the co-authors of the Penetration Testing Execution Standard (PTES); a framework designed to fix the penetration testing industry. Kennedy is the co-founder of DerbyCon, a large-scale conference in Louisville Kentucky. Prior to Diebold, Kennedy was a VP of Consulting and Partner of a mid-size information security consulting company running the security consulting practice. Prior to the private sector, Kennedy worked for the United States Marine Corps and deployed to Iraq twice for intelligence related missions.

 

Don’t forget to come early, starting at 6:00 PM, for food and soda.

Another great meeting from NEO Info Sec Forum – we hope to see you there!

 

– NEOISF Board –



del.icio.us|Digg|Furl|ma.gnolia|RawSugar|reddit|Spurl|Google|StumbleUpon



Older Posts »

Local Security Jobs @ our LinkedIn Group!


Support our Sponsors:


Visit our friends: