Mark Kitka Demystifies SIEM at CircleCityCon ’15

Indianapolis, CircleCityCon ’15 – June 12-14 –  Mark Kitka, an internal red teamer with a Fortune 500 financial services corporation, covers Alien Vault’s OSSIM – an Open Source Security Information and Event Managemt (SIEM) product.  Participants will learn how to scope, configure and deploy OSSIM to meet their needs.  They will also learn how to analyse the generated reports and respond appropriately to incidents.
Continue Reading →

Jayson Brown Hones Your CTF Skills at CircleCityCon ’15

Indianapolis, CircleCityCon ’15 – June 12-14 –  Jayson Brown, an IT Security Specialist for one of Michigan’s largest health care organizations, hones your hacking skills via Capture the Flag exercises.  Participants to this 8 hour course will test their skills by attacking a complete virtual business called Corp Co. Interested attendees should sign up at: https://circlecitycon.com/tickets Continue Reading →

Sam Wojdziak Teaches You to Tame Wireshark at CircleCityCon ’15

Indianapolis, CircleCityCon ’15 – June 12-14 –  Sam Wojdziak, a digital forensics and incident response expert, reveals techniques of traffic analysis with Wireshark.  Participants will learn how to use this open-source network protocol analyzer to hunt for malicious activities, research applications, and debug protocol implementations. Interested attendees should sign up at: https://circlecitycon.com/tickets Continue Reading →

J0hnnyXm4s Helps You Get That First InfoSec Gig at CircleCityCon ’15

Indianapolis, CircleCityCon ’15 – June 12-14 –  J0hnnyXm4s, an InfoSec maven and connector,discusses the specifics behind building up skills and social inventory necessary to effectively get an entry-level InfoSec role even though you may not have all of the requirements.  This three part seminar will provide the tools to enable a successful job search.Interested attendees should sign up at: https://circlecitycon.com/tickets Continue Reading →

Friends, Foes and Faceless Denizens – The Real Social Network

Three years ago I performed a penetration test of a transportation company in the Midwest. Save for a few low-severity vulnerabilities, Company X had a well-managed public-facing network infrastructure. Satisfied with the status of their network security, I turned my attention to the human network.

Searching for Company X on sites like Twitter, Facebook, and LinkedIn, I discovered employee names and corporate activities that were not shared on its website. As the search continued, Company X’s culture, processes, and lexicon emerged from the social dialogue.

Within three hours I was able to collect identifying information on key employees including birth dates, employment and educational history, and hobbies. These data points were cross-referenced with other resources on the Internet to profile Company X’s community involvement activities.

Continue Reading →

Bill Sempf Illustrates Software Security Principles at CircleCityCon ’15

Indianapolis, CircleCityCon ’15 – June 12-14 – Bill Sempf, a software security architect, illustrates the security principles that will keep your software applications more secure.  Participants in this four hour session will learn about Authentication and Content Management, Injection Vulnerabilities, Cracking and Fixing REST APIs, and Information Disclosure.  More importantly – they will to code proactively against these vulnerabilities!  Interested attendees should sign up at: https://circlecitycon.com/tickets Continue Reading →

Babs O’Matic Introduces Wearable E-Textiles at CircleCityCon ’15

Indianapolis, CircleCityCon ’15 – June 12-14 – Babs O’Matic, computer scientist and maker, introduces workshop attendees to Sparkle E-textiles, an avant-grade way to make interactive textiles, paper, ceramics, and environments.  Participants will receive an Aniomagic Sparkle Kit and learn how sew circuits into fabric. Interested attendees should sign up at: https://circlecitycon.com/tickets Continue Reading →