Meets

Topic: How malware can still subvert Anti-Virus and computer security
controls.
Speaker: Chris Secrest

"I'll talk a little about the presentation I give to users regarding
security awareness and how malware can still get by the controls we
know (particularly Anti-Virus and Firewalls). I'll go through some
netcat demos as I show this to users in a less technical format on
what exactly goes on when someone gets their machine compromised.
Then go over a backdoor tool called Tini. We'll modify Tini to evade
anti-virus on a target system. Then we'll go over Wrappers to show
how these are used to get past Firewalls by getting users to download
and run the tools for the attackers."

This will be in the big room at Elsie's (the room with the
projector). So please come, order food, beverages so we can continue
to use this space at no cost to DC612!

Meeting time: 6PM-10PM
6-7pm: order food
7-10pm: presentation and discussions

Thanks!

-VideoMan
DC612
Blog: http://www.dc612.org/
Email: info at dc612.org
GoogleGroup: http://groups.google.com/group/dc612

David Bryan (myself) will be doing a dry run of the "Reducing the risks to VoIP" talk tomorrow night at the DC612 meeting!

http://www.dc612.org
Location: Elsie's Bar and Bowling Ally- Large conference room.
Time 6:00pm

Agenda:
6:00pm- order food
6:30pm- start VoIP presentation
7:30pm- open slot, or we keep talking.
8:30pm- go home.

Just a note- please order food when attending so that Elsie's can continue to provide this space for us at no cost to DC612.

Speaker: David M. N. Bryan - CISSP - (AKA: VideoMan)
Presentation name: Reducing the risks to VoIP.

Overview: Voice over Internet Protocol (VoIP) systems are not a new technology, and have been around in some form since the late 90’s. It’s been a technology that has been adopted very quickly due to the reduced costs of deployment, management, and maintenance. In many cases people ignore the risks based on the reduced operating costs.

This can be true for some organizations, as VoIP solutions allow for a reduced office deployment times, and reduced costs based on using existing, or shared infrastructures. These cost savings also extend to remote offices, as voice trunks can now be routed over existing WAN/MAN connectivity.

In this talk I will present threats and known vulnerabilities to VoIP systems, and ways to mitigate these risks. I will also cover areas of concerns around quality of service, voice and signaling privacy issues, and what can be used to protect such sensitive information. I will also talk about ways that organizations can deploy some of these technologies with security in mind. Time permitting; I will attempt a quick demo showing insecure and less insecure communication methods.

Speaker Bio: David has 8+ years of experience doing computer security. He started by working at several ISPs, and then transitioned into working for large enterprise financial institutions to secure their networks. In more recent years he has been a computer security consultant, and enjoys working for NetSPI’s clients to help them reduce their risks. In his spare time he and his wife run the local DefCon Group (DC612), and help to run the network at DefCon. He also likes to brew beer, and bike the many miles of pathways in Minnesota.


--David

Some Goons of DefCon have created a TV series that is airing on CourtTV (Now TruTV) named Tiger Team, in the show they penetrate companies either via physical security attacks, or information security attacks. The show is done with quality, and much forethought put into it. We are going to screen some of these episodes. It's fun stuff and the majority of people don't seem to think that it can happen to them.

After one of the screenings we will do some Q and A with Pyro, he is one of the main information security experts of the show.

We have downloaded the shows, and have reserved the projector and larger room for that night.

http://en.wikipedia.org/wiki/Tiger_Team_%28TV_series%29

The shows are short- about 30 minutes with commercials, so it should be about a 23 minutes/show.

Tentative agenda (all times CDT)
6:00pm - Order food and drinks
6:30pm - Watch S01E01: The Car Dealership Takedown.
7:00pm - Do Q and A with Pryo via video conference
7:30pm - Watch S01E02: 24 Karat Caper
8:00pm - QA and general discussion

As always- please feel free to forward this on, as we should have the larger room at Elsie's that night.

-Heather and VideoMan

As it's the holiday season, we will not have a formal meeting tonight, but people are welcome to gather in the bar or bowling alley tonight!

Thanks!

We loaded the new linux firmware, and by we I mean -I- loaded the openwrt.org firmware on to the device, but the firmware did not have the Web admin loaded. So I then grabed the x-wrt image and secure copied it to the device, and promply wrote the image to the flash and rebooted. I neglected to read the part about removing the header and promptly bricked the device. DOH!

So, after much playing, we were able to send the new image to the wrt54g via a tftp send. It took a lot of playing, but we finally got it. (Thanks Chris!)

For the next meeting we will setup the WRT54g to be a kismet drone, and explore some of the neat things that we can do with our newly converted access point!

Hope everyone can make it!

Meeting tomorrow night at Elsie's!

We will do a session hacking the Linksys WAP54G to be a real router, a firewall, a VPN server, a wireless IDS, etc. If you have one of these please bring it along, but we may void it's warranty!


Unfortunately we did not have enough time to put together a wireless war drive, but that is something that we may do in the month of December.

Please join us as we put Linux on this hardware, and make it much better.

-VideoMan