Northeast Ohio Information Security Forum

—< NORTHEAST OHIO INFORMATION SECURITY FORUM MEETING
—< Wednesday August 21, 2013
—< 6:30 PM – 8:00 PM
—< Pizza and social start 6:00 PM
—< Location: Park Center Plaza #1, 6100 Oak Tree Blvd, off Rockside Road, Independence, Ohio
—< Open to everyone and free as always

The Northeast Ohio Information Security Forum will hold our monthly
meeting at the above date and time. It will be held in the lower
level of the Park Center Plaza #1 building (in the large room on lower
level) off of Rockside Road in Independence. Links to maps and
directions included in this email.

Agenda:

The Complete Life Cycle of Targeted SE Attacks

Description: We’ve all heard that Social-Engineering is effective
– but how do you create something thats effective and has a large
impact on an organization? This talk will walk through how to craft
scenarios for an organization that works for almost every
organization and rips through almost all of the defensive mechanisms
that we are use to today.


BIO: Nick Hitchcock (@nick8ch) is a Senior Security Consultant at
TrustedSec and has a relentless pursuit to break security and make
things do things they were not meant to do. He also has experience
working in the IT/information security field for several years and
has performed large scale security assessments/penetration tests,
risk assessments, forensic analysis, physical security assessments,
social engineering engagements. In addition to secular work Nick is
also actively involved in the Infosec community, being one of the
organizers of DerbyCon and head of security for BSidesLV and
BSidesDE. He also is a contributor to social-engineer.org and part
of the Social Engineering CTF team at DEF CON. OSCP, GPEN

Attacking and Defending Full Disk Encryption by Tom Kopchak

One of your company’s laptops was just stolen. You know that there was
sensitive information on the machine. You also know that full disk
encryption was deployed. Is your data safe? Can you prove it?

Many organizations are flocking to full disk encryption as a solution
to their data security requirements. Unfortunately, many of these
installations view the deployment of full disk encryption as a panacea
for any and all security concerns for their laptop fleets. All too
often, these systems are neither properly configured nor adequately tested.

In this talk Tom Kopchak, Senior Engineer, will analyze the challenges
associated with both attacking and defending systems protected with full
disk encryption. Many of the examples provided will draw from Tom’s
personal experience, including a case where a fully encrypted and
powered down system was able to be fully compromised as part of a
penetration test.

Don’t forget to come early, starting at 6:00 PM, for pizza and pop.
Another great meeting from NEO Info Sec Forum – we hope to see you there!

– NEOISF Board –

———————————————————————————-
[Location]
Park Center Plaza 1
6100 Oak Tree Blvd
Google maps link: short link http://bit.ly/ndIDBZ

[Directions]
1. I-77
2. Rockside Road exit
3. West on Rockside Road
4. 2nd light go South onto Oak Tree Blvd
5. Pull into the 3rd driveway on the right
6. Go to lower level
———————————————————————————-

The NEOISF meeting for Wednesday, July 17 has been canceled.

We will have our next meeting Wednesday, August 21, 2013.

—< NORTHEAST OHIO INFORMATION SECURITY FORUM MEETING
—< Wednesday June 19, 2013
—< 6:30 PM – 8:00 PM
—< Pizza and social start 6:00 PM
—< Location: Park Center Plaza #1, 6100 Oak Tree Blvd, off Rockside Road, Independence, Ohio
—< Open to everyone and free as always

The Northeast Ohio Information Security Forum will hold our monthly
meeting at the above date and time. It will be held in the lower
level of the Park Center Plaza #1 building (in the large room on lower
level) off of Rockside Road in Independence. Links to maps and
directions included in this email.

Agenda:

Application Security: What your developers don’t know can hurt you by Joe Kuemerle

Writing secure code is not difficult but it does require that you have a good understanding of what is insecure. In this session we will
cover some of the top threats out there that can be used to break your applications. We will also cover techniques to improve the design of
your application to minimize the vulnerabilities and mitigate those you cannot remove.

Second Talk TBA

Don’t forget to come early, starting at 6:00 PM, for pizza and pop.
Another great meeting from NEO Info Sec Forum – we hope to see you there!

– NEOISF Board –

———————————————————————————-
[Location]
Park Center Plaza 1
6100 Oak Tree Blvd
Google maps link: short link http://bit.ly/ndIDBZ

[Directions]
1. I-77
2. Rockside Road exit
3. West on Rockside Road
4. 2nd light go South onto Oak Tree Blvd
5. Pull into the 3rd driveway on the right
6. Go to lower level
———————————————————————————-

—< NORTHEAST OHIO INFORMATION SECURITY FORUM MEETING
—< Wednesday April 17, 2013
—< 6:30 PM – 8:00 PM
—< Pizza and social start 6:00 PM
—< Location: Park Center Plaza #1, 6100 Oak Tree Blvd, off Rockside Road, Independence, Ohio
—< Open to everyone and free as always

The Northeast Ohio Information Security Forum will hold our monthly
meeting at the above date and time. It will be held in the lower
level of the Park Center Plaza #1 building (in the large room on lower
level) off of Rockside Road in Independence. Links to maps and
directions included in this email.

Agenda:

Oh Windows Passwords – Let me Count the Ways by David Kennedy

We’re taught that in order for us to secure our passwords, we need something complex, something so strong that things like rainbow tables can’t crack em. Let’s explore all the ways an attacker can utilize password hashes or extract clear text passwords straight from memory. This talk focuses on known techniques for extracting passwords from systems and using them in a way that doesn’t require actually physically cracking it.

EMET 4.0 OMGWTFBBQ by David Kennedy

EMET 4.0: If you don’t know what this is and you haven’t used it. You need to be in this talk. Consider heavy exploit and zero mitigation for free and easily configured. Learn how to configure, deploy, and centrally manage in a corporate environment and be seamless without users noticing it. Sound way to easy? It is, that’s the awesome part. Protect your organization against zero days right now with stuff thats free.

Don’t forget to come early, starting at 6:00 PM, for pizza and pop.
Another great meeting from NEO Info Sec Forum – we hope to see you there!

– NEOISF Board –

———————————————————————————-
[Location]
Park Center Plaza 1
6100 Oak Tree Blvd
Google maps link: short link http://bit.ly/ndIDBZ

[Directions]
1. I-77
2. Rockside Road exit
3. West on Rockside Road
4. 2nd light go South onto Oak Tree Blvd
5. Pull into the 3rd driveway on the right
6. Go to lower level
———————————————————————————-