Disclaimer:
The materials available here exclusively reflect the opinion of the author(s), and DOES NOT express the opinion or position of the Ohio Information Security Forum, its Board of Directors, and its Sponsors.
This material is available for educational purposes only. The Ohio Information Security Forum, its Board of Directors and sponsors are NOT RESPONSIBLE for its use or misuse. No warranties or guarantees implied or otherwise are in effect. Use of these tools, techniques and technologies are at YOUR OWN RISK."
Here are presentations previously done by Ohio Information Security Forum participants, ordered by month and presentation name. This page contains the current year's presentations up to the most current ones available.
Looking for presentations from previous years? They can be found here:
Presentations from 2007
Presentations from 2006
Current presentations:
March 2013
Information Security Management 101: The Fundamentals – Jerod Brennen
Wireless Packets 101 – Robert Stewart
June 2012
Bridging the gap between security and development – Max Aulakh
May 2012
We have defensive tools;
are they actually working and how can we tell? – Dan Wilkins
March 2012
Kicking the Tires of Web Applications – Alex Kuhl
November 2011
SSLStrip – Virgil Vaduva
October 2011
Practical Risk Quantification – Jack Jones
September 2011
DDoS Attack Preparation and Mitigation – Jerod Brennen
June 2011
Collegiate Cyber DefenseCompetition (CCDC) – Justin Morgan
Building a firewall on a budget – Robby Stewart
April 2011
Database Security – Kevin Cross
March 2011
Dissecting Dalvik: Reversing Android – Craig Smith
February 2011
Should critical infrastructure be "Smart?" – Bryan Fite
July 2010 – 4th year Anniversary Event
Intro to Mutillidae: Teaching the OWASP Top 10 by example – Adrian Crenshaw
And You Thought H1N1 Was Bad – Dave Russell
27000 + 20000 + 38500 = IT GRC – Gary Sheehan
June 2010
Making Sense of Current Security Threats – Adam Gray
May 2010 – Month of 15 Minute Presentations:
Home Software Security
Web Application Security
March 2010
Drupal and Web Security – Nathan Rambeck
December 2009
Helix – Dan O’Callaghan
Stack Overflow Exploitation and notes – Deral Heiland
November 2009
Locks, Bypass, and Countermeasures – Douglas Gullett
Metadata – Brian Kesson
August 2009
Building an Incident Response team Part 2 – Jesse Lands
July 2009
Radio Reconnaissance in Penetration Testing – Matt Neely
Extracting Windows executables from packet captures – David Martinjak
May 2009
Building an Incident Response team – Jesse Lands
April 2009
Observations of an assessment engineer – Deral Heiland
March 2009
Entropy Based Behavior Modeling – Nick Hoffman
Lightbulb – Code used in above presentation
HIPAA and Security – Bobby Joyce
February 2009
Fingerprint cloning – "7yph0n"
January 2009
Nmap Network Mapper – Mark Shirley
2008 Presentations
December 2008
Attacking and Defending Biometric Access Control Systems–Matthew Neely
November 2008
Attack Surface of Web Applications–James Walden
Web-enabled Management–Deral Heiland
October 2008
Security Metrics and Reporting–Mark Metzner
September 2008
Layered Application Security–Dave Russell
July 2008
Web Hack and Attacks–Deral Heiland
Why Virtualization-based Security?–William Kimball
VoIP Hopping the Corporate Data Network–Nathan Power
May 2008
Incident Response and Forensic Investigation–A federal law enforcement officer from the local area
Web portals:Gateway to Information–Deral Heiland
March 2008
Application Security – David Martinjak
Alternate Data Streams – George Pauwels
February 2008
Steganalysis:Can the Battle be Won? – David Verschoore
January 2008
Rootkits Tim Wright
Risk Assessment Process – Deral Heiland