ColaSec

Columbia's Information Security Group

A free and informal gathering of information security professionals and enthusiasts in Columbia, South Carolina at the Richland County Public Library on the 3rd Tuesday of every month at 6:00 PM (click on the YouTube bubble).

Founded 2014 (COVID can’t stop us)

Image credit: Zach Pippin
zachpippin.com

Filtering by Category: Meetup

May 19, 2015, meetup agenda - PwnAdventure3

The next ColaSec meetup we will be taking a look at the hacking game Pwn Adventure 3, which was featured at Shmoocon and in this article on WIRED. The game is a massively multiplayer online (MMO) game, where objectives are completed by hacking the game.

We have setup a server to run the game. Attendees will need to bring a laptop and download the game client from the Pwn Adventure 3 site. After downloading and installing, launch the client to run an update on it.

Some other things attendees might want to install/bring is a decompiler program to view the game files, like .NET Reflector. I've also found a walkthrough that uses utilizes Wireshark, so that might come in handy as well. Speaking of walkthroughs, feel free to do a little research ahead of time. Here are some links to get your started:

Ghost in the Shellcode - Home of the Pwn Adventure. Has walkthroughs on last year's version.

PwnAdventure3 - Main website.

Dead Packet Society - A walkthrough using Wireshark.

PwnAdventure2 walkthroughs:

balidani

Everlasting Wanderer

Lockboxx

List of tools for static code analysis - Wikipedia

This exercise is something I've never done before and I those most of the group hasn't done before, so I'm hoping we can all learn and grow from the game together.

ColaSec meetup January 20, 2015, roundup

Tuesday we had our first ColaSec meeting of the new year at IT-ology. Among the announcements we have POSSCON looking for security professionals to present at the conference who have a background and experience with implementing open source for security related projects. The POSSCON organizers approached us to help them fill the five speaking slots they have available. Each speaking session will be 45 minutes and should cover a topic that includes implementing or developing an open source tool for security. If this of interest to you or if you have questions, contact me at timothy.deblock[at]gmail[dot]com.

I presented on, How to get started and keep up with information security. When I first got interested in security I wasn’t exactly sure where I needed to start. This presentation is meant to share my experiences of going from reading one security related site to reading several, listening to podcast, reading books, going to conferences, and getting involved. If you’re interested in reviewing my presentation the slides are available here.

PRESENTATION: How to get started and keep up with information security by Timothy De Block

After my presentation Jeff gave us a review of ShmooCon which he recently attended in Washington, DC. Aside from scaring the shit out of us in regards to our vulnerable home routers, he also tolds us about the Keynote by Joseph Lorenzo Hall, which covered, “the intersection of technology, law, and policy.” Essentially, keeping the internet the open internet. He also told us about encryption and the police, a talk about analysis of point-of-sale (POS) software, Httpscreenshot, Masscan’s ability to scan the entire internet in 6 minutes (calling BS here), and also timing side channels which dealt with some cryptography voodoo.

After those two presentations we got into a little bit of a discussion on career paths into security and what someone would need to do for that. It was a great meetup with a lot of good back and forth and resource sharing. Our next meetup is scheduled for Tuesday, February 17, 2015. We look forward to seeing you there!


January 20, 2015, meetup agenda

Tuesday January 20, 2015, is our first meetup of the new year.

This Friday Blackhat gets released to theaters and we're looking to have a special ColaSec meetup to go watch the movie. Shmoocon is also this weekend so be on the look out for items to talk about from there next Tuesday.

On the docket is me giving a presentation on how to keep up/get into information security. The title is still very much in the works, but it's a presentation that talks about some of the resources an information security professional can use to keep up with the latest happening in the community. This is my first presentation every and I'm hoping it's not too noobish and gives people some good information they can use. The goal is to be interactive so that those already following the infosec community can participate as well. Really, it's just a way for us to create some discussion and share some great resources to make us all better professionals.

Looking forward to seeing some old faces and some new faces at the next meetup.

New ColaSec meetup day and social engineering

After talking to several current and potential members of this user group, we have decided to shift our meetup day from every third Monday of the month to every Tuesday of the month. Tuesday just seems to fit everyone's schedule better and allows everyone to shake off those Monday blues. We also won't be conflicting with Monday night football during the fall.

With the new date it puts our next ColaSec meetup on Tuesday January 20th, 2015. The Tuesday after Blackhat releases. If anyone is planning on going hit me up on Twitter or by email (timothy.deblock[at]gmail[dot]com).

While on holiday and doing some chores this past week I was listening to episode 120 of the Down the Rabbithole security podcast and they had on Chris Hadnagy who was talking about social engineering. It's a really good episode, with a lot of good information and interesting stories about social engineering, as well as how organizations can better protect themselves against social engineering. If you can find the time I would highly recommend listening to the episode.

ColaSec meetup agenda December 15, 2014

It's the final ColaSec meetup of 2014 and we're looking to do a little planning for 2015. We've had a good start to the security meetup and want to continue to grow and expand our membership. This is your opportunity to show up and let us know what you want out of this monthly meetup.

We will be meeting Monday, December 15, 2014, at Hunter-Gatherer Brewery on Main Street in downtown Columbia.

We'll also be talking about some of the latest news in infosec, including:

  • Sony Hack
  • POODLE part deux
  • Target liability for last year's breach

Be sure to come out and join us. We would love to meet new information security professionals in the area.

ColaSec meetup agenda October 20th, 2014

Our next ColaSec meeting will be held at IT-oLogy on October 20th, 2014 at 6:00 PM.  We will have pizza, a demo of metasploit & some traffic analysis, a presentation on Google dorking, and a discussion of some of the InfoSec news from the past few weeks (there has been plenty).  Adult beverages are welcome, but this is a BYOB event

Please note that parking in the garage at IT-oLogy is free after 5:00 p.m.  You can access this garage on Gervais St between Marion and Sumter.  There's a foot bridge over into the area where we'll be meeting.  Directions will be posted on our website before the weekend.