Category Archives: Chapter Meetings

May 2019 Joint ISSA-OWASP Meeting

May 2019 Joint ISSA-OWASP Meeting

 

Join the local Rochester ISSA and OWASP chapters for a special presentation on the OWASP Amass Project by Jeff Foley and Anthony Rhodes.

Sustenance (likely pizza) and beverages will be provided. Space is limited so please RSVP.

Where:  Nixon Peabody, 1300 Clinton Square, 14th floor (free parking underneath the building, bring the ticket to the meeting for validation)

When:  Wednesday, May 8th, 6:00 PM  (Please RSVP to info@rocissa.org by Monday, May 6th.)

OWASP Amass Project

Today, large organizations deal with the challenge of running their infrastructure across many networks and namespaces due to the use of cloud and hosting services, legacy environments and acquisitions. This can make it difficult for an organization to maintain visibility of its Internet-facing assets and an ability to track down systems that pose a risk to its security posture. The OWASP Amass Project attempts to help organizations perform network mapping of its attack surface and better understand how its assets are distributed across the networks of trusted partners. During this talk, contributors to the OWASP Amass Project will discuss how to utilize the tools and demonstrate how to regain visibility of a large network infrastructure.

Jeff Foley, Project Leader of the OWASP Amass Project

Jeff has spent the last eighteen years as an innovative technologist and technical leader taking on challenges in the area of cyber warfare. He started the Amass project after noticing the need for robust and practical OSINT tools that aid information security professionals in mapping complex networks.

Anthony Rhodes, Contributor to the OWASP Amass Project

Anthony has over five years of industry experience as a penetration tester, red teamer, and software engineer. He has been following the OWASPAmass Project since its inception and has recently joined as a contributor to help enrich its functionality beyond DNS enumeration and network mapping.

Please RSVP to info@rocissa.org by Monday, May 6th to reserve your seat at this exciting event!

May 2019 ISSA Chapter Meeting

May 2019 ISSA Chapter Meeting

 

Join the local Rochester ISSA chapter for its May chapter meeting.  This month’s meeting will provide a hands-on network forensics training session with Kali, a popular Linux distro used for pentesting.

Admission is free for current ISSA members and $20 for non-members or expired members.  Sustenance (likely pizza) and beverages will be provided.  Space is limited so please RSVP.

Where:  Nixon Peabody, 1300 Clinton Square, 13th floor, Lomb conference room (free parking underneath the building, bring the ticket to the meeting for validation)

When:  Wednesday, May 1st, 6:00 PM  (Please RSVP to info@rocissa.org by Monday, April 29th.)

Seminar:  Hands-on Network Forensics

Using Kali Linux

Formerly known as Backtrack, Kali Linux is a powerful pentesting platform.  Unlike other distros, Kali has tightly integrated a number of the top security testing tools available.  Network forensic exercises will be designed to simulate real-world scenarios using packet captures for an in-depth learning experience.

Agenda

  • Learn powerful Wireshark filters for quickly analyzing data
    ·Follow multiple conversation streams with ease
    ·        Decrypt traffic like you’re an analyst working for the NSA
    ·        Become the network forensics bad-ass you’ve always wanted to be!

Student Requirements

  • Students should come to the meeting withKali Linux already loaded and working.  Pre-built images of Kali are available to run for free in both VirtualBox and VMware Player.
  • A solid understanding of TCP/IP and various network services (DNS, DHCP, etc).  (Note:  If you think that TCP-IP is a droid from Star Wars, this session is NOT for you.)
  • A tolerance/desire for moderate pain & suffering is helpful, but not required.

What Students Should Bring

Students are required to bring their own laptops already running Kali Linux on VMware Workstation Player 15 or VirtualBox 6.  If you are new to installing Kali, we recommend one of the pre-built images from Offensive Security.

  • This session is Hands-on Network Forensics usingKali Linux, not how to install Kali Linux on a virtual machine or troubleshooting why Kali is not allowing copy/paste.  PLEASE COME PREPARED!
  • Windows 10 users using VMware Workstation will need to disable Credential Guard and/or Device Guard beforeKali Linux will boot properly.
  • You will need to be able to transfer files from USB to yourKaliLinux image, preferably using the copy/paste functionality.
  • If your Linux kung-fu skills are not up to snuff, you can follow along with plain-ole’ Wireshark on your laptop, but you will not be able to fully participate in the training.

Trainers

Instruction will be provided by several members of the local Rochester ISSA chapter.  Please keep heckling to a minimum.

Please RSVP to info@rocissa.org by Monday, April 29th to reserve your seat at this exciting event!

April 2019 ISSA Chapter Meeting

April 2019 ISSA Chapter Meeting

 

Join the local Rochester ISSA chapter for dinner from the Dinosaur BBQ as well as a presentation by Tevora’s Managing Director, Cloud Security, Christopher Callas !

Admission is free for current ISSA members and $20 for non-members or expired members.  Space is limited so please RSVP.

Where:  Nixon Peabody, 1300 Clinton Square, 14th floor (free parking underneath the building, bring the ticket to the meeting for validation)

When:  Thursday, April 25th, 6:00 PM  (Please RSVP to info@rocissa.org by Tuesday, April 23rd.)

Special Presentation: Reducing the Attack Surface (AWS)

Christopher Callas, Tevora

As managing director of cloud security at Tevora, Christopher Callas is responsible for leading various areas of specialization within information security, including reviewing and implementing new security tools, coordinating incident response, performing penetration tests, conducting forensics, and working to ensure regulatory compliance. Working hand in hand with clients to develop and strengthen their security and compliance programs, Christopher specializes in cloud architecture, tokenization, encryption, PCI, PA-DSS, and P2PE assessments, with extensive experience in leading HIPAA, HITRUST, NIST, and ISO security assessments. Christopher earned a degree in Computational Economics at the University of California, Santa Barbara, and his current certifications include PCI QSA, PA-QSA, as well as a Certified Information Systems Security Professional (CISSP).

Please RSVP to info@rocissa.org by Tuesday, April 23rd to reserve your seat at this exciting event.

March 2019 ISSA Chapter Meeting

March 2019 ISSA Chapter Meeting

 
Join the local Rochester ISSA chapter for dinner from the Dinosaur BBQ as well as a presentation by GuidePoint Security’s Sr. Security Engineer, Chris Peltz !

Admission is free for current ISSA members and $20 for non-members or expired members.  Space is limited so please RSVP.

Where:  Nixon Peabody, 1300 Clinton Square, 14th floor (free parking underneath the building, bring the ticket to the meeting for validation)

When:  Thursday, March 28th, 6:00 PM  (Please RSVP to info@rocissa.org by Tuesday, March 26th.)

Special Presentation: Managing Vulnerability in a World Without Patching

Chris Peltz, GuidePoint Security

Chris Peltz is a Senior Security Engineer at GuidePoint Security.  With a background in information technology operations management, system administration, and security engineering, Chris has had deep practical experience in all phases of the vulnerability lifecycle.  In his time at GuidePoint, Chris has assisted organizations of varying sizes across all industry verticals to design, implement, and maintain meaningful vulnerability management programs.

Please RSVP to info@rocissa.org by Tuesday, March 26th to reserve your seat at this exciting event.

February 2019 ISSA Chapter Meeting

February 2019 ISSA Chapter Meeting

 

Join the local Rochester ISSA chapter for Happy Hour* at Mulconry’s, including food, raffles, and a chance to meet with other security professionals.

* First alcoholic drink, food, and all non-alcoholic drinks compliments of ISSA Rochester Chapter. Additional alcoholic drinks may be purchased at the bar.

Admission is free for current ISSA members and $20 for non-members or expired members. Space is limited so please RSVP.

Where:  Mulconry’s Irish Pub & Restaurant, 17 Liftbridge Lane East, Fairport, NY 14450

When:  Thursday, February 28th, 6:00 PM  (Please RSVP to info@rocissa.org by Tuesday, February 26th).

Please RSVP to info@rocissa.org by Tuesday, February 26th to reserve your seat at this exciting event.