The class you've all been waiting for. Georgia Weidman, has been kind enough to show us a thing or two about penetration testing over the course of two Metasploit classes. Check out her blog - http://www.grmn00bs.com/
Here are the details...
When: Saturday August 27th & Saturday Sept 3rd @ 6pm sharp
Where:
The Brain Tank
350-ish Kinsley Ave
Providence, RI
2nd Floor
call- 401-267-TANK (8265) for assistance.
Time: About 2 hours each meeting for 4 hours total.
Class Name: Metasploit for Penetration Testing
Class description: The class will begin with the basics of using the Metasploit Framework. We will continue on following the penetration test methodology to use Metasploit to exploit vulnerable systems in the lab. This class is suitable for those with no background in Metasploit or penetration testing as well as penetration testers who want to add the Metasploit Framework to their arsenal.
Requirements: a Laptop. (BackTrack LiveCD's and coffee will be provided.)
*Cost: Suggested Donation $10 (We need to buy handcuffs, tshirts, and banners for Maker Fair RI. However, if you can't afford to donate, by no means will you be turned away from this class. Give what you can.)
FAQ:
Q: How do I signup? -
A: Just email Agent5@dc401.org to be added to the sign-up list. I don't expect to run out of seating but it would be helpful to know how many attendees we'll have.
Q: I don't carry cash often. Can I use PayPal to donate?
A: Yes just include that in your sign-up email and we'll respond with a PayPal link.
Q: BYOB?
A: Certainly.
Q: Parking?
A: Plenty.
For January, we have Jim Tabele giving a talk on the various robotics platforms available and how one codes for each of them. Jim knows what he's talking about, since he runs the Old Fashioned Robotics Store here in Providence.
We're going to put some glow sticks on either side of the Kinsley Ave entry to lead folks to the right place, since it's kind of a PITA to find. Show up around 1830. Talk starts around 1900. We'll all probably be hanging out until 2230 or 2300.
BYOB!
Date/Time: Jan 5th, 2011 - 1830-2300.
Location:
The Brain Tank
350-ish Kinsley Ave
Providence, RI
Custom Map
For December's meeting, Mike Umbricht is going to give a talk about the recent historic preservation work that has happened at the Ladd Observatory at Brown University. They've been rebuilding the telescopes, pendulum clocks and telegraph system to their original 1890s working conditions. This is the kind of stuff that Steampunk wishes it could be. This should be a really cool talk about some very old tech.
ATTENTION!!! NEW LOCATION!!! NEW TIME!!!!
Agent5 has offered up The Brain Tank as a place for us to meet. We're going to try it out in December and see how everyone likes it. It's not as centrally located as AS220, but it has ample free parking and allows us to have a later start time, which will hopefully allow more folks to make it to the meeting after work.
Since there's no bar from which to buy beer, we'll be free to BYOB. Since our extra funds aren't going to be going to the bar, show your support for The Brain Tank by taking a rummage in your misc electronic parts bins and bring some parts you aren't using.
Date/Time: Dec 1, 2010 - 1830-2000
Location:
The Brain Tank
350-ish Kinsley Ave
Providence, RI
Custom Map
We've got 2 (possibly 3) folks giving flash talks at the November DC401 meeting.
Wednesday, Nov 3rd, 2010
1730 - 1900
AS220 Performance Space
115 Empire St, Providence
Wednesday, September 1st, DC401 is back after a one month hiatus with information fresh from Blackhat 2010 in Las Vegas!
Dan King of SecureWorks will be presenting the research he presented at Blackhat this year, regarding some security flaws he discovered in the very products we all use to protect our networks. Here's the description of his research from the Blackhat program:
Daniel King discovered McAfee Network Security Manager (the web-based management appliance for McAfee IPS sensors) was vulnerable to authentication bypass / session hijacking (CVE-2009-3565) and cross-site scripting (CVE-2009-3566) vulnerabilities. We'll demonstrate a proof-of-concept attack scenario that blends these vulnerabilities to gain unauthorized access to the NSM web management interface through cookie stealing and hijacking an administrator's session.
Date/Time: 1730 - September 1, 2010
Location: AS220 Performance Space - 115 Empire St, Providence