Uncategorized
Thursday October 12th, 6pm @ WildeRoast – DFIR Month
Hello Hackers!
It’s October, and that means it is DFIR Month at DC612!
What is DFIR you ask? It’s pronounced “dee-fur” and it is not the same as shaving a fuzzy animal. DFIR stands for Digital Forensics and Incident Response, and it is the realm of investigating breaches, reacting to them to minimize immediate damage, and ensuring the proper information is gathered to help prevent them in the future.
As with other DC612 Projects months, the talks this time around will be shorter, but there will be more of them.
So bring your favorite hex editor, and prepare for a night of forensic fun!
— TactiFail
Thursday September 14th, 6pm @ WildeRoast – Crypto Month
Hello Hackers!
It’s September, and that means it is Crypto Month at DC612!
At the beginning of the year we announced DC612 Projects:
In the Month of February, DC612 will be opening a new program in which YOU are encouraged to sign up for and research a topic of your choosing.
Then, turn your Project into a 20 minute talk that you bring back to the group and present along with others in your category
Just like the Web Security and Recon nights, there will be multiple, shorter talks for the Crypto meeting. Keep an eye on this list as we get confirmation on who all is speaking:
- @NightmareJS will be going over the new Firefox Send project, with a demo
- Our resident kilt-wearing Crypto fanatic @Crypty McCryptoFace may make an appearance
- I’ve heard rumors that Tony may have some words of wisdom to share
If you will be speaking but your name is not on this list, hit us up on the Twitters, Slack, or by emailing info@dc612.org and we’ll get your info up.
See you there!
DC612 – Thursday August 10th, 6pm @ WildeRoast
We made it to August ladies and gentlemen!
I trust we all made it back from Hacker summer camp safe and sound.
Traditionally we have taken August off at DC612 to rest and recoup. However, this year we’re trying something new.
Join us this Thursday at the usual time, at the usual place for an old fashion Hacker Dinner Party.
No speaker – No agenda – Come as you are as always.
DC612 – Thursday July 13th, 6pm @ WildeRoast
Its Web Security month at DC612!
In celebration of Web (in)Security, we are welcoming a special guest, Damodar Chetty. He will be talking to us about the importance of Application Security and a popular OWASP tool used to test applications, ZAP!
Web Application Vulnerability Testing with OWASP’s ZAP and Webgoat
OWASP’s ZAP is an amazingly full featured web hacking toolkit – combining an intercepting proxy with HTTPS support, spidering, as well as passive and active vulnerability scanning capabilities. It also has a great pedigree – it is a flagship project of the Open Web Application Security Project (OWASP) and started life as a fork of the Paros proxy. And the best part is that unlike its competition, ZAP is completely free! All this results in a package that provides an easy entry into the world of web application vulnerability testing. In this hour, we’ll consider how to leverage the features of this interesting tool against an intentionally vulnerable web application – OWASP’s WebGoat. In the process, we’ll also discuss some common web application vulnerabilities, including Cross Site Scripting (XSS) and Cross Site Request Forgery (CSRF).
Presenter Details
Damodar is an educator, software engineer and life-long student who has spent the last three decades architecting and building software systems in a wide variety of technologies. He has worked for Ameriprise, Best Buy, US Bank, Thomson Reuters, Pearson Vue and the Federal Reserve Bank of Minneapolis, and is currently a Principal Architect for Wealth Management at US Bank. He is the author of “Tomcat 6 — A Developer’s Guide” and was a technical editor for the Third Edition of Core JavaServer Faces (Geary, Horstmann). He satisfies his passion for education by teaching at Metropolitan State University in St Paul and providing corporate training.
Additional Jabber
If you are planning to come to the War Driving event on 7/15, come by on the 13th to get some of your burning questions answered!
And we should probably talk about a 612 get together at DEF CON.
DC612 Wardrive – Saturday July 15, 2017
The 2017 DC612 Wardrive is official!
On Saturday, July 15 we will meet outside the St. Anthony Falls parking garage ($5 parking for up to 12 hours) for a 4PM pickup, then enjoy 3 hours of hackery and drinking with a short break in the middle for snacks and leg-stretching. Please plan on showing up at least 15 minutes early so we can do a head count and make sure we’re not over-booked. There are three important things that anyone attending needs to know:
- Important! We went with the Black Onyx bus which can seat up to 40, maximum 60 with standing room. Realistically speaking, considering the gear and booze we will only be able to accommodate around 30 people comfortably, so we have set up a RSVP link here: clickyUpdate: Apparently EventBrite requires an account to RSVP, but we won’t know or care if you use fake info 🙂 Sorry for the inconvenience!You must RSVP if you wish to come with! If you don’t and you show up anyway, we will give priority to those who did RSVP and if there is room left we will open it up to general admittance on a first-come first-serve basis.
- We want everyone to be able to attend regardless of financial situations. While there is no mandatory fee for attending, we are requesting $20 cash per person for those who can afford it to help offset costs. If you can chip in more, that is definitely appreciated. Update: If you would like to contribute via Bitcoin, an address has been set up: 1JueDXm6AEtuq9PyFRhFkZYDFAQsfUsYwa
- This is a 21+ event. Alcohol is allowed, and some generic drinks will be provided but you are encouraged to bring your own. Please be responsible, don’t overdo it and throw up or anything. We want to do this again, and making fools of ourselves is not a good step in that direction.
A good resource for hardware compatibility is this page from the aircrack wiki. Otherwise, ALFA brand cards have long been a solid choice.
For any questions, please email info@dc612.org or message us on Twitter at @DC612. See you there!