News – DEF CON 919

APT – June 9 2019

June 5, 2019/in Past Events /by Bace16

Def Con 919 Presents – APT Advanced Persistent Threats

https://www.meetup.com/DefCon919/events/254915320/

—

When:
Sunday, June 9, 4 PM

ALL levels of experience, skill, and interest are welcome and encouraged to join us. You do not have to be a “hacker” to attend. There are no memberships, dues, or fees. If you want to contribute to the group, please volunteer your time and experience or you can donate $ via the paypal button at the bottom of the page.

A Series of [un]Fortunate Events
Because, sometimes you win get lucky. Regardless of an organization’s size – anyone can be a target. Its all about the $money$. This session will provide an overview of a notable APT’s methodology, what can be done to protect yourself from such threats and of course, some fun dumpster fireside stories on how both the defenders and the APTs have failed miserably at their efforts (sanitized to protect the guilty), and what they should have done better!

4:00 – 6:00 Advanced Persistent Threat Discussion
6:00 – 8:00 Open discussion at a nearby bar

Where: 150 Fayetteville St #1400, Raleigh, NC 27601

CTF Meeting – June 14 2019

June 5, 2019/in Past Events /by Rogue Piper

To All the Hackers of DC919:
https://www.meetup.com/DefCon919/events/262061475/

Hope this finds you well! Are you trying to up your game for CTF challenge? Can we help?
Knowing the enemy or preparing to pen-test, the hacking challenges represent real-world puzzles every day.

To help with this, DC919 will be hosting a conference call hack session on the 2nd Friday of this month, June 14th from 7-11. Here we hope to hack common vulnerable images, on our own machines.

Each month we’ll announce a new image that will be our target. Prepare by installing VMWare, VBox, or Whatever, download the image and making sure you can ping it before we get started. Loop into Slack if you need help with this.

All skill levels are welcome, but this is a peer-learning event without a leader. Newbs will want to partner with someone experienced. Everyone will work at their own pace and discuss the challenge in Real Time on the call.

Thanks for reading, and considering!

This month we’ll be working on:
https://www.vulnhub.com/entry/dc-6,315/

Conferences – July-2019

May 30, 2019/in Upcoming Events /by Bace16

Def Con 919 Presents – Def Con 27, Hacker Conference Prep & More!

Def Con 27 & Hacker Con Prep

Sunday, Jul 14, 2019, 4:00 PM

3 Ethical Hackers Attending

Check out this Meetup →

—

When:
Sunday, July 14, 4 PM

ALL levels of experience, skill, and interest are welcome and encouraged to join us. You do not have to be a “hacker” to attend. There are no memberships, dues, or fees. If you want to contribute to the group, please volunteer your time and experience or you can donate $ via the paypal button at the bottom of the page.

Def Con, BSides, Derby, Infosec, Cackalacky. So many conferences, but what can you actually do and how do you get the most out of your experience there?

This month we will focus on conferences, mostly Def Con and BSidesLV conference preparations, but we’ll also discuss BSides RDU, InfoSeCon, and Cackalacky Con. All the logistics and activities available can be overwhelming and leaving you with FOMO (Fear Of Missing Out). We’ll discuss how to make it easier on yourself and plan ahead to get the most out of the conference.

We will start with the usual announcements and a brief overview of conferences. Then a round table discussion, where you are welcome to, but not required to speak. Come with questions or advice for others. We’ll move into open discussion if we run out of conference topics.

4:00 – 6:00 Conference Discussion
6:00 – 8:00 Open discussion at a nearby bar

Where: 150 Fayetteville St #1400, Raleigh, NC 27601

August 2019 – Def Con 27 – Technology’s Promise

May 24, 2019/in Upcoming Events /by Bace16

Def Con 27 – Technology’s Promise

Thursday, Aug 8, 2019, 12:00 PM

2 Ethical Hackers Attending

Check out this Meetup →

—
This is just announcing Def Con 27 in Las Vegas. Join Def Con 919 in Las Vegas, where it all began.

When:
Thursday, August 8, 2019, 8:00 AM to Sunday, August 11, 2018, 5:00 PM

Information:

We will have a quiet party on one of the nights which will only be disclosed to members through our private channels for local DC919 members only. We are not a large enough DCG to have a public party….yet. Click that donation button and throw us some fund and maybe we’ll have a badge and party for you next year.

5.22.2019 Google Plaintext Passwords

May 22, 2019/in News /by Bace16

News came out yesterday, May 21, that Google had stored passwords in plaintext.

DC919 received an email notification that 2 users had a password stored in plaintext. “Google Planned Action: for your security, starting tomorrow Wednesday May 22, 2019 PT we will force a password change unless it has already been changed prior to that time.”

Admin checked the 2 users, they had only basic email access and Last Sign In: “Hasn’t signed in” The passwords stored were Google’s own auto-generated passwords. Previous to today, admin had the option to view the auto-generated password for a user after reset. Today, this is no longer an option. DC919 always forced the user to change their password on first login. The 2 users have been suspended and the group members the accounts belonged to have been contacted.

Threat Hunting – May 19 2019

April 11, 2019/in Past Events /by Bace16

Def Con 919 Presents – Threat Hunting

https://www.meetup.com/DefCon919/events/254915320/

—

When:
Sunday, May 19, 2 PM

ALL levels of experience, skill, and interest are welcome and encouraged to join us. You do not have to be a “hacker” to attend. There are no memberships, dues, or fees. If you want to contribute to the group, please volunteer your time and experience or you can donate $ via the paypal button at the bottom of the page.

This session is going to be longer than normal to get through all the content. Also if you already have an idea of what threat hunting is, you can skip the first hour and just attend the hands on lab. Details to download the lab will be posted later.

2:00 – 3:00 Intro to Threat Hunting presentation
3:00 – 6:00 Hands on threat hunting lab
6:00 – 8:00 Open discussion at Raleigh Times Bar

Where:

Lightning Talks – April 14 2019

February 12, 2019/in Past Events /by Bace16

Lightning Talks!!

Sunday, Apr 14, 2019, 4:00 PM

34 Ethical Hackers Went

Check out this Meetup →

—

Prefetch Files: Program Execution by: Mr Forensics

Agenda:
ALL levels of experience, skill, and interest are welcome and encouraged to join us. You do not have to be a “hacker” to attend.

Planning for upcoming conference shenanigans and doing lightning talks on tips for conference talks or whatever other topics come up.

• 4 PM Lightning Talks at Durham County Library – South Regional Library 4505 S Alston Ave, Durham, NC 27713
• 6 PM Open Discussion at Bralie’s Sports Bar 1725 Carpenter Fletcher Rd, Durham, NC 27713

Where:

CACKALACKY CON – MAY 31 – JUNE 2

January 5, 2019/in Past Events /by Bace16

CackalackyCon will take place May 31 – June 2, 2019 at The Sheraton Chapel Hill.

Tickets are available online now for $40, you can also buy a ticket for a student.

Tickets will also be available at the door for $50. Show your student ID at the door for a student ticket while supplies last.

Many DC919 members will be in attendance supporting the community by volunteering for villages, giving presentations, showing off side projects, or simply attending. Be sure to let the group or Bace16 know if there’s anything you want to do or get help with for the con.

Keep an eye on the official CackalackyCon website or Twitter for more details as they announced.

SIEM – February 10 2019

January 5, 2019/0 Comments/in Past Events /by Bace16

Def Con 919 Presents – Firewalls

Network Security – SIEM

Sunday, Feb 10, 2019, 4:00 PM

22 Ethical Hackers Attending

Check out this Meetup →

—

When:
Sunday, February 10, 4 PM

ALL levels of experience, skill, and interest are welcome and encouraged to join us. You do not have to be a “hacker” to attend.

Network Security – SIEM
DC919 will be hosting an introduction class on network security including SIEM. It will give you an overview of how to secure a network and some hands on with a few tools to get started.

This class is open to anyone that would like to participate or observe. Additional details will be provided later for the requirements to participate.

Agenda:
• 4:00 Network Security – SIEM at Durham County Library – South Regional Library 4505 S Alston Ave, Durham, NC 27713
• 5:30 Clean up the library room
• 6:00 Open Discussion at Bralie’s Sports Bar 1725 Carpenter Fletcher Rd, Durham, NC 27713

Where:

Reverse Engineering – January 13 2019

January 5, 2019/0 Comments/in Past Events /by Bace16

Def Con 919 Presents – Reverse Engineering

Reverse Engineering

Sunday, Jan 13, 2019, 3:00 PM

17 Ethical Hackers Attending

Check out this Meetup →

—
When:
Sunday, January 13, 3 PM
We’re starting earlier to get through more material.

ALL levels of experience are welcome! It helps to have some knowledge of a high-level programming language like C, Python, or Java, but we’ll cover the basics if necessary. You do not have to be a “hacker” to attend.

Software reverse engineering is an incredibly valuable skill to have in your arsenal. From CTF competitions to vulnerability discovery, analysis, and exploitation, it’s often necessary to delve into the low-level inner workings of a software sample to get the job done. Knowing how software operates at a low level will also make you a better developer!

Software RE can be a daunting discipline to pick up for even experienced software and security professionals, simply due to the intimidating breadth of knowledge that can be required just to get started. This workshop aims to outline your foray into RE and focus on the foundational skills needed to learn quickly and be successful. We may even solve some crackmes! You didn’t think you’d get out of this without some hands-on practice, did you?

The examples in this workshop will require a 64-bit Intel Linux system (virtual, Windows with WSL, or native) to run. There is also a Docker image at 3pidemix/reveng with the necessary environment configured to run the examples. Labs and setup instructions can be found here: https://goo.gl/tcyZ3a Please review them prior to the workshop if you plan to participate in the hands-on labs.

Agenda:
3:00 Intro and announcements
3:10 Reverse Engineering Presentation
5:30 Clean-up the room
6:00 Drinking at Carolina Ale House

Main Meeting at 3 PM:

Bar Meeting at 6 PM: