—< NORTHEAST OHIO INFORMATION SECURITY FORUM MEETING
—< Wednesday December 21, 2011
—< 6:30 PM – 8:00 PM
—< Pizza and social start 6:00 PM
—< Location: Park Center Plaza #1, 6100 Oak Tree Blvd, off Rockside Road, Independence, Ohio
—< Open to everyone and free as always
The Northeast Ohio Information Security Forum will hold our monthly meeting at the above date and time. It will be held in the lower level of the Park Center Plaza #1 building (in the large room on lower level) off of Rockside Road in Independence. I’ve included links to maps and directions in this email.
Talks planned (abstracts and bios at bottom of this email)…
- Homemade Hardware Keylogger/PHUKD Hybrid by Irongeek
- The Penetration Testing Execution Standard (PTES) – Changing an Industry by Dave Kennedy
Don’t forget to come early, starting at 6:00 PM, for pizza and pop courtesy of NEOISF (http://www.neoisf.org/).
Park Center Plaza 1
6100 Oak Tree Blvd
Google maps link: http://bit.ly/ndIDBZ
2. Rockside Road exit
3. West on Rockside Road
4. 2nd light go South onto Oak Tree Blvd
5. Pull into the 3rd driveway on the right
6. Go to lower level
Signs will be posted on the building.
– – – – – – – – – – –
TALK TITLE : Homemade Hardware Keylogger/PHUKD Hybrid
SPEAKER : Irongeek
He has been doing some work recently on making homemade keyloggers of both the USB and PS/2 persuasion that will take keystrokes, record/replay them, and modify programmable HID payloads accordingly. This hardware and software is not exactly ready for prime time, but he figured he would share it with you.
Here are just a few of the possibilities:
* Log all the keys using a MicroSD card
* Vary payloads based on keystrokes
* Log username/password and use them later
* Screw with the person who is typing
TALK TITLE : The Penetration Testing Execution Standard (PTES) – Changing an Industry
SPEAKER : Dave Kennedy, CISO @ Diebold Inc.
The Penetration Testing Execution Standard (PTES) was just released in its first draft form at DerbyCon 2011. Since then, there has been an overwhelming amount of input placed on changing the way the industry does Penetration Testing. This talk will cover what defines a penetration test, what they are used for, and how you can change the industry for the better.
Dave Kennedy (ReL1K) is a Vice President and Chief Security Officer at Diebold Incorporated. Dave is responsible for ensuring the overall physical and logical security of a Fortune 1000; publicly traded company. Dave also runs the security consulting practice at Diebold which is focused on enhancing and building security for large and mid-sized organizations. Dave is the creator of the Social-Engineer Toolkit (SET), an open-source penetration testing tool for social-engineering. Dave is the co-founder of DerbyCon, a large-scale security conference located in Louisville Kentucky. Dave is the co-author of Metasploit: The Penetration Testers Guide book which has been number one in security on Amazon for over 6 months. Prior to Diebold, Dave worked for the United States Marine Corps (USMC) and the intelligence field working on information warfare activities.