ISSessions 2020-10-08

As spooky szn begins 🍁 👻 🎃 and the cold hits 🥶🧣🧤, we want you to join us for a wonderful meet-up this Thursday, October 8th, from 7:00 PM to 9:00 PM.
Lee Kagan will be giving us an awesome presentation on OSX (Apple’s OS) Exploitation.

Date: 2020-10-08 (THURSDAY) 
Time: 19:00 – 21:00
Location: VIRTUAL (Discord + YouTube) 

Agenda
19:00 – Kickoff – Kurt 🔑 
19:10 – News Roundup – Nash & Adam 🗞 
19:30 – Rick’s Repo Rundown – Nick 👑 
19:45 – Break 🛌 
20:00 – An Introduction to OSX Exploitation – Lee Kegan 🧠 🤯

Hey there everyone!

All of us at ISSessions hope that the first month of your 2020 Fall term has gone well. We started on a great note with a very successful Panel and the Beginner’s BASH workshop – We have no plans to slow down now!

As spooky szn begins 🍁 👻 🎃  and the cold hits 🥶🧣🧤, we want you to join us for a wonderful meet-up this Thursday, October 8th, from 7:00 PM to 9:00 PM. Kurt will kick-off the meeting with some great tools that Sheridan provides for us students. Then the good old News Roundup with Nash & Adam followed by Ricks Repo Rundown with Nick. After a short break, our good friend of the club – Lee Kagan will be giving us an awesome presentation on OSX (Apple’s OS) Exploitation. I know I’m excited about this talk! 

An Introduction to OSX Exploitation 

As more Apple products become integrated into the modern environment, OSX is finally getting the offensive attention it deserves. As a result, it’s becoming critical for attackers and defenders to understand the attack surface as well as the unique challenges this OSX poses. 

This talk will walk through the basics of attacking OSX. What are Plists? Are DyLibs meaningful? Does ActiveDirectory work with Macs? What the heck is JamF? 

Lee will cover all of these and more in this introduction to OSX exploitation. 

Lee Kagan

Lee started in the IT and security world in 2010 in Toronto, Canada. When Lee isn’t tip-toeing through enterprise’s Active Directory environments he’s running the DerbyCon Toronto Community Chapter, the Canadian Collegiate Cyber Exercise (C3X), and as an instructor teaching Canadian offensive and defensive professionals ways to up their game. Lee has spoken at multiple events and conferences such as BSides and SecTor. In his spare time, Lee is an executive chef at a restaurant in his mind. 

Lee specializes in offensive RnD with a focus on ActiveDirectory and defensive measures evasion techniques, malware development in C#/C++, C2 design and management.

Lee is the practice lead for Adversarial Collaboration (purple team) at Lares. Prior to Lares, Lee was the Sr. offensive RnD specialist at Symantec.

As school picks up, blow off some steam with ISSessions while learning about the latest in InfoSec! Be there or be scared… ☠️ 💀 

– ISSessions Exec Team 👾 🎃

BEGINNER’S BASH WORKSHOP

Hello!

ISSessions is holding our first workshop of the year, and you won’t want to miss it (especially first and second years)! The workshop is scheduled for Saturday, October 3rd, from 11 am – 2:00 pm (we may go up to an hour later). This event is entirely FREE for you!

Beginner’s BASH
Beginner’s BASH will provide a primer for UNIX shell environments to help demystify the workflow and give beginners the ability to become productive in a command-line environment. This will be accomplished via Zoom where our event manager Jamie Paugh goes through “OverTheWire” lab Bandit levels 0-16. Members can ask questions and code-along live with the stream. There is no BASH experience required and we encourage those with experience to come by and improve upon their skillbase.

You will use BASH a lot in the future, so why not get ahead of the curb while you can!

When: October 3rd, 2020 11:00 AM Eastern Time (US and Canada)
Register in advance for this meeting: https://us02web.zoom.us/meeting/register/tZctd-2rrz4qGdIuN0wSpmYDVj5_6Ww7NN4p
After registering, you will receive a confirmation email containing information about joining the meeting.

Get ready for a great workshop and we hope to see many first and second years there!

– ISSessions Exec Team

ISSessions 09-24-2020

Are you curious about how to get started jumpstarting your InfoSec/Cyber Security career? Don’t worry – we got you covered!We have secured 5 tremendous InfoSec professionals who want to share their knowledge with you.

Hey there everyone!

When you hear about the meeting we have in store… just brace yourselves! Get ready, because, on Thursday, September 24th at 7:00 PM, we have a star-studded line-up planned! We will be live on Discord and YouTube as always!

Are you curious about how to get started jumpstarting your InfoSec/Cyber Security career? Don’t worry – we got you covered!We have secured 5 tremendous InfoSec professionals who want to share their knowledge with you. It will be an open discussion forum led by our very own Event Manager and VP, Jamie & Louai. You have the opportunity to contribute your questions by either filling out the form below or asking you questions on Thursday night!

Link to ask questions: https://forms.gle/YTDw3W7fxkU3FN8f9

YouTube Link: https://www.youtube.com/watch?v=MxGGPU9qWHE&ab_channel=ISSessions

Discord Link: https://discord.com/invite/YYeezah

Our incredible panel of guests includes many faces you may already know in addition to some new ones too:

Alana Staszczyszyn
Alana Staszczyszyn is a practicing security consultant. Her past and present work has focused on penetration testing and security governance in the public health sector. She is also heavily interested in various political, socioeconomic, and cultural aspects of cybersecurity, particularly on how the intersections of security and those domains have given rise to new cyber-threat landscape risks.

John Simpson
John graduated from the Sheridan Information Systems Security program in 2015 and is currently a vulnerability researcher and team lead with Trend Micro in Toronto. He started his career with a coop position at Deloitte and stayed on board after graduation, working in Security Operations Center engineering and vulnerability assessment/penetration testing roles. In his current position, John reverse engineers vulnerabilities to write proof-of-concept exploits and devise network detection strategies to catch exploitation attempts. During the last 4.5 years in his current role, he has discovered several new vulnerabilities, authored blog posts for Trend Micro and Zero Day Initiative, and spoken at several conferences.

Nicholas Johnston
Nick is the program coordinator for, and professor in, Sheridan College’s Honours Bachelor of Applied Information Sciences (Information Systems Security) degree program. Previous to his academia role, Nick led an incident response team, worked as a computer forensic investigator, programmer, penetration tester, secure code auditor, and general InfoSec consultant. You can find Nick on Twitter at @nickinfosec where he’ll either be tweeting cringe-worthy cyberpuns or electronics/maker questions.

Lee Kagan
Lee started in IT and security world in 2010 in Toronto, Canada. When Lee isn’t tip-toeing through enterprise’s Active Directory environments, he’s running the DerbyCon Toronto Community Chapter, the Canadian Collegiate Cyber Exercise (C3X), and as an instructor teaching Canadian offensive and defensive professionals ways to up their game. Lee has spoken at multiple events and conferences such as BSides and SecTor. In his spare time, Lee is an executive chef at a restaurant in his mind.

Olivier Lemelin
Olivier is currently a Threat Hunter at a major Canadain Telco and has been a part of the security industry for the last five years. He believes that the modern web browser is too complex and could be replaced by a well-behaved terminal environment and a bunch of Gopher servers. In his free time, he enjoys binary exploitation, Emacs, LISP programming, and gardening, all from the comfort of his $HOME.

We hope to see you all there! You definitely won’t want to miss this ISSessions meet-up 🙂

– ISSessions Executive Team