Last month, DefCon had its first-ever fully-online, widely-distributed, fault-tolerant, canceled conference. There were some hiccups, but overall things went smoothly. While we are hopeful that it won’t need to be virtual again in the future, it was undeniably a unique experience.
This month, we have a special guest speaker who has given several talks at DefCon and other conferences, instructs for SANS, and knows a thing or two about Kerberoast. You may know him as none other than Tim Medin!
Tim will be presenting on various Kerberoast attacks and defenses:
Kerberos, besides having three heads and guarding the gates of hell, protects services on Microsoft Windows Domains. Its use is increasing due to the growing number of attacks targeting NTLM authentication. Attacking Kerberos to access Windows resources represents the next generation of attacks on Windows authentication. In this talk Tim will discuss his research on new attacks against Kerberos, including a way to attack the credentials of a remote service without sending traffic to the service as well as rewriting tickets to access systems. He will also examine potential countermeasures against Kerberos attacks with suggestions for mitigating the most common weaknesses in Windows Kerberos deployments.
Whether you are an attacker or a defender, or just a curious hacker, or all three, this is not to be missed.
As usual these past few months, we will be meeting online at https://cafe.cyberia.club/dc612.
As most of you have probably gleaned, DefCon is canceled. For real. Sort of.
Since DefCon is moving to a virtual-only SafeMode this year, things are a little different to say the least. Nobody really knows what it will be like. Will there be connection issues? A DDoS? Will DNS stop working? Probably all of them at once if we’re being honest.
This is definitely a unique situation to find ourselves in, and one that will hopefully not repeat in 2021. As such, we are encouraging everyone to experience it in its fullest (if you are able) and we will not be having a DC612 “meetup” like we normally would in Vegas. Take this time to see what works and what doesn’t, what needs improvement, and maybe take some notes for our future virtual meets.
With luck, masks, and common sense, we’ll see you all in-person next year. But hopefully sooner. But probably not. Expect a September virtual meeting to be planned as usual.
This month we are to be joined by Tom Pieragastini, a local penetration tester who will be teaching us about API hacking:
Increasingly web applications are relying on backend API services in order to query data, write data to databases and perform backend functions. On some levels the shift to API centric applications presents conditions that are very similar to testing traditional web applications, while on other levels the presence of APIs fundamentally changes the methods and tools utilized during testing. This shift in the application space becomes more prevalent everyday, and has changed the face of web application testing.
I’ve worked with Tom directly and am excited to have him present.
This is another virtual-only meeting. We will again be using Jitsi, courtesy of our friends at Cyberia. Please forgive any technical issues as we continue to figure out this new platform. The meeting URL will be shared an hour before the meeting is set to start on Thursday. See you all there!
Where: Online! Please do not meet at our usual spot 🙂
When: Thursday, May 14th, 2020 @ 6:12PM
Update: The meeting URL is https://cafe.cyberia.club/AvrilBromaTreffen – feel free to lurk until the meeting officially starts at 6:12 PM.
As some of you might have picked up, the world is sorta crazy right now. Current recommendations being what they are, we have elected to suspend in-person meetings and switch to virtual for the time-being. We did a hybrid physical/virtual meeting in March and it worked well enough, so we are going to try for full virtual this month using Jitsi, courtesy of our friends at Cyberia. Please forgive any technical issues as we try out a new platform.
This month, we have three smaller presentations from three normal-sized regulars. @bd will give an overview of two critical RFCs, “Strongthany” delivers “bear chase security: why our security only has to be marginally better than our competitors”, and one more mystery speaker will have a mystery topic. Mysterious!
The meeting URL will be shared an hour before the meeting is set to start on Thursday. See you all there!
Where: Online! Please do not meet at our usual spot 🙂
When: Thursday, April 9th, 2020 @ 6:12PM
Our original speaker fell ill, so we will be having two mini-speakers (mini in presentation length, not stature) instead:
First – Capturing iDevice App Data with Zap. The thing least done these days on a mobile phone is talk. This doesn’t stop our phone from from chatting away. I became fascinated with all the different places and all the data that my phone shared, just by me using the apps on my phone. Capturing the network data that apps use we can see just what we are providing for the deals, convenience, and entertainment we carry around then decide how we want to share our data. @435ftw
Second – The Future of Machine Learning: Augmentation, Industry, and Art. There are usually two kinds of AI talks given to wider audiences: AI 101/102 and AI Will Kill Us All for Money. This is neither. We’ll examine industrial, accessibility, and cultural impacts of balanced applications of these systems. Sometimes, the way to avoid a dystopia is to share a dream beautiful enough that the other paths just aren’t appealing. <speaker name withheld>
We will also be toying with streaming the first talk, as a way to prepare for possible future meetings being online events should COVID-19 or other calamities make in-person meetings infeasible.
This month, Bigendian Smalls will join us to discuss his journey into the world of mainframe hacking, consulting, and teaching, and will show those who are interested how to get started themselves. Come learn about the big iron that underpins the planet, dispel some myths and talk about some real life Gibson hacking.
Where: Wilde Cafe – 65 Main St SE, Mpls.
When: Thursday, March 12th, 2020 @ 6:12PM