Tuesday, March 31, 2009

Tenable Network Security sponsors DojoSec

We are proud to announce Tenable Network Security is now sponsoring DojoSec Monthly Briefings.

Tenable Network Security is the leader in unified security monitoring and creator of the popular and award-winning Nessus® Vulnerability Scanner. Tenable provides agentless solutions for continuous monitoring of vulnerabilities, configurations, data leakage, and log analysis and compromise detection. Tenable's award-winning products are utilized by many Global 2000 organizations and Government agencies to proactively minimize network risk. For more information, please visit: http://www.tenablesecurity.com.

Sunday, March 29, 2009

Directions to Capitol College

April 2, 2009 - DojoSec Monthly Briefings will be held at Capitol College. Getting to Capitol College can be tricky, apparently there are two roads named Springfield in Laurel.

http://www.capitol-college.edu/aboutcapitol/visiting/map.shtml

Monday, March 23, 2009

DojoSec Monthly Briefings - April 2, 2009

Speaker: Rob Fuller (Mubix), Room362.com

Title: From Couch to Career in 80 hours

Description:

Carpe Vitam - Seize Life, it's shorter than you think. This talk is about taking the business world, cracking it open, seeing how it ticks, and putting it back together so we can get back to doing what we love. We are going explore everything from cyber-stalking potential employers to accepting an offer letter. It's time to start hacking your career.

Speaker Bio:

Rob Fuller has been breaking computers and cheating pc games since the age of Oregon Trail where he got in trouble at school for having a million dollars at the end of his journey. Never quite fitting inside a box at 6′4”, his time in the United States Marine Corps has left him thirsty for a challenge. Rob now spends his time as a penetration tester in the Washington D.C. Metro Area.

--

Speaker Name: Matt Watchinski, Sourcefire

Title: 1 Byte , 5 Minutes , Holy Hot Tuna

Description:

This presentation will discuss the recent flaw in Adobe Acrobat (and Acrobat Reader). The talk will demonstrate the whole process from intelligence gathering through exploitation, mitigation and vulnerability disclosure. The reasons why the VRT decided to release a third party patch and the subsequent media coverage will also be covered.

Speaker Bio:

Matt Watchinski joined Sourcefire in 2002 as the Director of Vulnerability Research. He is primarily responsible for leading the Sourcefire Vulnerability Research Team, a group of leading edge intrusion detection and prevention experts working to discover, assess and respond to the latest trends in hacking activity, intrusion attempts and vulnerabilities. This team is also supported by the vast resources of the open source Snort community, making it the largest group dedicated to advances in network security industry.  Prior to joining Sourcefire Matt held similar roles with Hiverworld (now nCircle) and Farm9 (now Ambiron Trustwave).

Monday, March 16, 2009

Sourcefire's Matt Watchinski appearing at April's DojoSec

Matt Watchinski will be giving the keynote presentation at the April 2nd DojoSec Monthly Briefings

Speaker Bio: Matt Watchinski joined Sourcefire in 2002 as the Director of Vulnerability Research. He is primarily responsible for leading the Sourcefire Vulnerability Research Team, a group of leading edge intrusion detection and prevention experts working to discover, assess and respond to the latest trends in hacking activity, intrusion attempts and vulnerabilities. This team is also supported by the vast resources of the open source Snort community, making it the largest group dedicated to advances in network security industry.  Prior to joining Sourcefire Matt held similar roles with Hiverworld (now nCircle) and Farm9 (now Ambiron Trustwave).

Presentation Title: 1 Byte , 5 Minutes , Holy Hot Tuna

Presentation Abstract: This presentation will discuss the recent flaw in Adobe Acrobat (and Acrobat Reader). The talk will demonstrate the whole process from intelligence gathering through exploitation, mitigation and vulnerability disclosure. The reasons why the VRT decided to release a third party patch and the subsequent media coverage will also be covered.

Sunday, March 8, 2009

Blogging about DojoSec

I'm happy to see that many bloggers are blogging about DojoSec. My friend Dustin Fritz of The CND Group has a good blog post with pictures. Dustin and his wife are a couple of the many people that have helped DojoSec behind the scenes. Thanks Dustin.

DojoSec Monthly Briefings - March 2009 - Videos

The videos for Thursdays are online at the DojoSec multimedia page. Here is a taste.


DojoSec Monthly Briefings - March 2009 - Marcus J. Ranum from Marcus Carey on Vimeo.

Friday, March 6, 2009

March DojoSec Monthly Briefings Wrap-up

Last night's DojoSec Monthly Briefing went extremely well. We had near 100 attendees and didn't run out of pizza. Last night marked the beginning of charging a fee for the monthly event. The entry fee was $1, however many donated over this amount. We also announce our first sponsor for DojoSec Monthly Briefings, TechGuard Security.

The presentations went well and will be up on the DojoSec site as soon as possible. Thanks to all the bloggers and twits that are spreading the word.

-MJC

TechGuard Security Sponsors DojoSec Monthly Briefings

Sun Tzu Data is proud to announce that TechGuard Security is now sponsoring DojoSec Monthly Briefings (DMB). This sponsorship exemplifies TechGuard's commitment to serve the information security community's needs. I want to personally thank TechGuard's President and CEO Suzanne McGee for her belief in our grassroot efforts.

TechGuard is a women-owned, SBA 8(a), small business enterprise, was founded in February 2000 to address US Critical Infrastructure Protection and National Cyber Defense. TechGuard provides trusted and award-winning IT solutions through innovative research and development, consulting services and training for the DoD, National Intelligence, Homeland Security, Federal, Financial and Healthcare communities. TechGuardians (tm) address the current challenges of cybersecurity and privacy, specifically the problems of information management, network vulnerabilities, firewall integrity and network security concerns created by e-commerce initiatives, global Internet connections and cyberterrorism. For additional information please visit www.techguard.com or contact Bobby Jones at 636.519.4848.

Tuesday, March 3, 2009

February 2009 - DojoSec Monthly Briefings - Videos Online


DojoSec Monthly Briefings - February 2009 - Joseph McCray from Marcus Carey on Vimeo.

DojoSec Multimedia

DojoSec Monthly Briefings - March 5, 2009 - Talk Added

I'm happy to announce we have added a talk.

Subject: Snort - The Forensic Tool?
Presenter: David Warren, CSC

Much has been published regarding the open source intrusion detection system software known as snort's What is less known is Snorts ability to read previously captured binary packet capture (PCAP) files from various network devices, process these files, and produce meaningful output for responders, analysts, investigators, and examiners. Snort users also have the ability to create customized rules and include within these rules any character-based or hexadecimal pattern of interest.

The Lineup:
iPhone Forensics - Walter Barr and Sean Morrissey
Snort - The Forensics Tool? - David Warren
Cyberwar is BS - Marcus J. Ranum

That's three awesome talks, I wouldn't miss this one. Sign up and RSVP now.

February 2009 - DojoSec Monthly Briefings - Videos Online


DojoSec Monthly Briefings - February 2009 - Joseph McCray from Marcus Carey on Vimeo.

For more videos click on the Multimedia tab.

Update on DojoSec Monthly Briefings - March 5, 2009

Thanks to everyone for making DojoSec Monthly Briefings one of the best events in the nation. Many attendees have stepped up to the plate by offering talks. Companies, particularly Tenable Network Security, have shown unbelievable support with their leadership giving talks at the events. We are pleased to see more companies offering speakers.

The mission of DojoSec is to provide an environment for people to master the art of information security. DojoSec Monthly Briefings are an example of the commitment that we are making to accomplish this goal. After much consideration we have decided to charge an entry fee for DojoSec Monthly Briefings.

Starting immediately, DojoSec Monthly Briefings will charge an entry fee of one dollar. The one dollar fee establishes DojoSec Monthly Briefings as the most affordable information security events in human history. It definitely provides "Bang for your buck!". The one dollar entry fee will be collected at the door. Attendees are free to include a donation above the entry fee to support the effort.

Attendees need to be on the mailing list.

Thanks,

Marcus J. Carey