Agenda for May 8th 6:00 - 6:30pm Food and Snacks served 7:00 - 10:00pm Monthly Series: "Now they own you" Open discussion of "0-days, exploits, worms, hacks and attacks" over the last 30 days, and how to fix them to protect yourself. Presentation 1: Incident Response and Forensic Investigation: Speaker is a federal law enforcement officer from the local area Network intrusions, the forensic techniques and the expertise sometimes needed to collect/analyze computer evidence can be a drain on IT staff and criminal investigators. However, live incident and forensic response techniques are becoming the "norm" for both the incident responder and investigator. You can take certain steps to prepare for simple or highly complex intrusions. This session will discuss some basic and intermediate level steps you can take now- utilizing open source and relatively inexpensive evidence recovery tools and scripts that will assist law enforcement and others involved in sharing information on network attacks. Pro's and con's of live incident response will be discussed with the audience.
If web portals can be used to aggregate information and resources from multiple locations, and deliver it to users at a single point of access. Could an attacker use these same functions and features to gain access into unauthorized internal systems? In this presentation we will explore using a web portal interface to query resources behind the firewall by tunneling request through the portal services using a cross-site-scripting (XSS) like vulnerabilities. To conclude this presentation we will have a floor discussion on layered defense techniques and measures that can be taken to protect your network from these type of exploits and attacks. |
|
|
|
|