Ladies and Gents it's almost February in the new year and I hope you're excited for the rest of 2012.
Tonights Talk:
"Building a Language Palace of Our Own"
by: CP Constantine
Abstract: Over the past decade we've watched the world of Modern Infosec rush to cobble itself together from the liturgy of its ancestral disciplines. But somewhere along the line we forgot that we were only borrowing terminology and concepts from other fields as a temporary measure; and stopped trying to build a lexicon that could be applied objectively and measured universally. Today's infosec teeters on an epistemological Tower of Babel, where we try to make equations from natural language, squeeze measurable workflows out of systems designed for tech support, not incident response, scratch our heads trying to find the APT in the Bar Graph output of our SIEM's and most unforgivable of all, insist on forcing the word 'trust' into being considered a unit of measurement. So if you've ever tried to explain the different between a vulnerability and an exposure, facepalmed over being asked for a pie chart of your security risks, or envied your friends in real engineering fields, where the rules are defined by laws of physics, not marketing hyperbole, this may just be the talk for you.
---------------------------------
Part of tomorrows meeting I'd like to set aside to bring everyone up to date on what's been happening with the following topics discussed at last meeting:
-QuahogCon: I'd like to bring everyone up to date with what's been happening behind the scenes.
-Classes: we discussed this subject heavily last meeting. Now that we've had some time to think about it, let's bring it back to the table and give it a good run.
-Lab Server: I brought the servers donated by Chris D. (THANKS CHRIS!) over to AS220 and we'll be setting them up soon. The concensus was to set them up as a virtual system that allows us to do testing of our own projects in a safe environment. The question is; what should the architecture be?
Anyone with personal projects is highly encouraged to take a moment to talk about them. Let's hear what you're up to, let's discuss.
Meeting:
Wednesday February 1st at 6:30pm
AS220 FabLab
Entrance in REAR of 131 Washington Street PROVIDENCE RI
Call 401-267-TANK (8265) if you get lost or need to be let in.
-Dave -Agent5-
Data Mining the Death Master File:
Tipsy has been messing with various techniques for SSN and Death Master File Data Mining and he'd like to show us a thing or two.
The Social Security Death Index can be a valuable asset to background checks. Unfortunately that data can be very expensive to purchase.
We're going to see how to mine it for free and save $7k.
QuahogCon:
It's time to start talking QuahogCon for next year. THERE WILL BE A QUAHOGCON 2012. I don't care how many kidneys I need to sell. So to prevent that sort of thing from happening try to make it to this meeting.
Collectively we have everything needed to make QuahogCon happen again. Now is the time.
P.S. Also, thanks to all of your support, our Handcuff Picking Tutorial at Maker Faire RI 2011 was so successful they want more! Brian Jepson has asked if we'd like to swing by AS220 on October 19th to school some n00bs in lockpicking. So, let's discuss that among other things Wednesday night.
-----
Show up around 1830. Discussion and Presentation to start around 1900. We'll all probably be hanging out until 2230 or 2300.
BYOB!
Lots of FREE PARKING!!!
Date/Time: October 5th, 2011 - 1830-2300.
Location:
The Brain Tank
350-ish Kinsley Ave
Providence, RI
Call me for access or if you need help finding the place. Look for the brick building with the big smoke stack.
401-267-TANK (8265)
-Dave -Agent5-
The class you've all been waiting for. Georgia Weidman, has been kind enough to show us a thing or two about penetration testing over the course of two Metasploit classes. Check out her blog - http://www.grmn00bs.com/
Here are the details...
When: Saturday August 27th & Saturday Sept 3rd @ 6pm sharp
Where:
The Brain Tank
350-ish Kinsley Ave
Providence, RI
2nd Floor
call- 401-267-TANK (8265) for assistance.
Time: About 2 hours each meeting for 4 hours total.
Class Name: Metasploit for Penetration Testing
Class description: The class will begin with the basics of using the Metasploit Framework. We will continue on following the penetration test methodology to use Metasploit to exploit vulnerable systems in the lab. This class is suitable for those with no background in Metasploit or penetration testing as well as penetration testers who want to add the Metasploit Framework to their arsenal.
Requirements: a Laptop. (BackTrack LiveCD's and coffee will be provided.)
*Cost: Suggested Donation $10 (We need to buy handcuffs, tshirts, and banners for Maker Fair RI. However, if you can't afford to donate, by no means will you be turned away from this class. Give what you can.)
FAQ:
Q: How do I signup? -
A: Just email Agent5@dc401.org to be added to the sign-up list. I don't expect to run out of seating but it would be helpful to know how many attendees we'll have.
Q: I don't carry cash often. Can I use PayPal to donate?
A: Yes just include that in your sign-up email and we'll respond with a PayPal link.
Q: BYOB?
A: Certainly.
Q: Parking?
A: Plenty.
Mike Umbricht will be presenting us with some things he's been working on. We should also finalize Maker Faire RI plans. I'd also like to discuss a small project, code named "Hacker Hostel", with everyone. Looking for ideas, criticism, concerns, positive remarks, suggestions, solutions, etc.
Mike Umbricht- "The intersection of antique clocks and modern precision timekeeping."
One hundred years ago when when pendulum clocks were the most precise kind of time standard available it took a great deal of effort to calibrate them using observations of stars with a special purpose transit telescope. Today, the rate of these clocks can be automatically monitored using optical or acoustic sensors connected to digital timers that precisely measure each swing of the pendulum to an accuracy of one microsecond. This opens up new possibilities such as monitoring the changes in the rate of the clock due to thermal expansion of the pendulum or flaws such as a worn tooth on a gear. This talk will demonstrate the methods and describe the initial results of a project to use modern timekeeping to examine antique clocks. Mike hails from Brown University, currently working on restoring the Ladd Observatory as well as being part of the Retro Computing Society in RI. http://brown.edu/Departments/Physics/Ladd/index.html & http://www.rcsri.org/
Show up around 1830. Discussion and Presentation to start around 1900. We'll all probably be hanging out until 2230 or 2300.
BYOB!
Lots of FREE PARKING!!!
Date/Time: August 3rd, 2011 - 1830-2300.
Location:
The Brain Tank
350-ish Kinsley Ave
Providence, RI
Custom Map
Come one, Come all to the DC401 show! There's a new botnet we should discuss. If anyone has any expertise on TDL4 bring it with you to the meeting. Let's talk promo video for DC401 and progress with Maker Faire RI. If absolutely necessary I've got a half written SE paper we can chat about.
Show up around 1830. Discussion and Presentation to start around 1900. We'll all probably be hanging out until 2230 or 2300.
BYOB!
Lots of FREE PARKING!!!
Date/Time: July 6th, 2011 - 1830-2300.
Location:
The Brain Tank
350-ish Kinsley Ave
Providence, RI
Custom Map
Archives