ISSessions 2020-11-26

We are in for a delicacy of a treat this meeting… and it’s going to be one for the history books! Join us this Thursday, November 26, @ 7 PM, for the latest news in InfoSec, a newly added segment, and some extraordinary guest speakers (PLURAL).

Date: 2020-11-26 (THURSDAY) 
Time: 19:00 – 21:00 EST
Location: VIRTUAL (Discord + YouTube) 

Agenda:  
19:00 – Kickoff – Kurt   🔑
19:10 – News Roundup – Louai & Yusef  🗞
19:30 – Memory Lane – Cem & Kurt 👀
19:55 – Break  🛌
20:00 – Breaking into Red Team & Incident Response – Kenny Hartlaub & Andrew Major 👑 👨‍🎓

COME ONE, COME ALL!! Ladies and gentlemen, security students and pros, hobbyists and newbz!

We are in for a delicacy of a treat this meeting… and it’s going to be one for the history books! Join us this Thursday, November 26, @ 7 PM, for the latest news in InfoSec, a newly added segment, and some extraordinary guest speakers (PLURAL).

Starting off, Louai and Yusef tackle the latest news in InfoSec. Next, Kurt and Cem take a dive into the historical significance and impact of an exploit in a new segment we’re calling “Memory Lane”. Want to know how and why the notorious Buffer Overflow became so infamous? Join this deep dive – we guarantee you’ll learn something you never knew! To end off a great night, two ISS alumni, Kenny Hartlaub & Andrew Major – who currently work at Mandiant – give us the ins and outs of their Red Teaming and IR careers.


Breaking into Red Team & Incident Response – by Kenny Hartlaub (@Kenny) & Andrew Major 

Mandiant pros Kenny Hartlaub and Andrew Major steer through the fascinating ride that is Red Teaming and IR. The ups, the downs, the journey to and the maintenance after, no stone will be left unturned as you peek over the shoulders of two industry pros. They will also be giving tips, tricks and advice on preparing to embark on these insanely cool career paths! 

Kenny Hartlaub is an Associate Consultant on FireEye Mandiant’s Red Team. He has been in the security field for 4 years as a penetration tester and red teamer. Kenny graduated from the ISS program in 2018 and is very passionate about learning and growing in his field. He has come to know failures and successes over his time to where he is now and uses his experiences to help others succeed. 

Andrew Major is a Consultant on FireEye Mandiant’s Incident Response Team. He graduated from the ISS program in 2018. After not having an idea of what to do at the end of year 3, a forensics lab accepted him for a co-op. Now with two years on Mandiant’s IR team fighting against APT groups, he is here to encourage others to get into the same rewarding field.


As the snow and cold really hit 🥶, come out (virtually) on Thursday for this superb night! See y’all there 😉

– ISSessions Exec Team 💯

ISSessions 2020-10-08

As spooky szn begins 🍁 👻 🎃 and the cold hits 🥶🧣🧤, we want you to join us for a wonderful meet-up this Thursday, October 8th, from 7:00 PM to 9:00 PM.
Lee Kagan will be giving us an awesome presentation on OSX (Apple’s OS) Exploitation.

Date: 2020-10-08 (THURSDAY) 
Time: 19:00 – 21:00
Location: VIRTUAL (Discord + YouTube) 

Agenda
19:00 – Kickoff – Kurt 🔑 
19:10 – News Roundup – Nash & Adam 🗞 
19:30 – Rick’s Repo Rundown – Nick 👑 
19:45 – Break 🛌 
20:00 – An Introduction to OSX Exploitation – Lee Kegan 🧠 🤯

Hey there everyone!

All of us at ISSessions hope that the first month of your 2020 Fall term has gone well. We started on a great note with a very successful Panel and the Beginner’s BASH workshop – We have no plans to slow down now!

As spooky szn begins 🍁 👻 🎃  and the cold hits 🥶🧣🧤, we want you to join us for a wonderful meet-up this Thursday, October 8th, from 7:00 PM to 9:00 PM. Kurt will kick-off the meeting with some great tools that Sheridan provides for us students. Then the good old News Roundup with Nash & Adam followed by Ricks Repo Rundown with Nick. After a short break, our good friend of the club – Lee Kagan will be giving us an awesome presentation on OSX (Apple’s OS) Exploitation. I know I’m excited about this talk! 

An Introduction to OSX Exploitation 

As more Apple products become integrated into the modern environment, OSX is finally getting the offensive attention it deserves. As a result, it’s becoming critical for attackers and defenders to understand the attack surface as well as the unique challenges this OSX poses. 

This talk will walk through the basics of attacking OSX. What are Plists? Are DyLibs meaningful? Does ActiveDirectory work with Macs? What the heck is JamF? 

Lee will cover all of these and more in this introduction to OSX exploitation. 

Lee Kagan

Lee started in the IT and security world in 2010 in Toronto, Canada. When Lee isn’t tip-toeing through enterprise’s Active Directory environments he’s running the DerbyCon Toronto Community Chapter, the Canadian Collegiate Cyber Exercise (C3X), and as an instructor teaching Canadian offensive and defensive professionals ways to up their game. Lee has spoken at multiple events and conferences such as BSides and SecTor. In his spare time, Lee is an executive chef at a restaurant in his mind. 

Lee specializes in offensive RnD with a focus on ActiveDirectory and defensive measures evasion techniques, malware development in C#/C++, C2 design and management.

Lee is the practice lead for Adversarial Collaboration (purple team) at Lares. Prior to Lares, Lee was the Sr. offensive RnD specialist at Symantec.

As school picks up, blow off some steam with ISSessions while learning about the latest in InfoSec! Be there or be scared… ☠️ 💀 

– ISSessions Exec Team 👾 🎃

BEGINNER’S BASH WORKSHOP

Hello!

ISSessions is holding our first workshop of the year, and you won’t want to miss it (especially first and second years)! The workshop is scheduled for Saturday, October 3rd, from 11 am – 2:00 pm (we may go up to an hour later). This event is entirely FREE for you!

Beginner’s BASH
Beginner’s BASH will provide a primer for UNIX shell environments to help demystify the workflow and give beginners the ability to become productive in a command-line environment. This will be accomplished via Zoom where our event manager Jamie Paugh goes through “OverTheWire” lab Bandit levels 0-16. Members can ask questions and code-along live with the stream. There is no BASH experience required and we encourage those with experience to come by and improve upon their skillbase.

You will use BASH a lot in the future, so why not get ahead of the curb while you can!

When: October 3rd, 2020 11:00 AM Eastern Time (US and Canada)
Register in advance for this meeting: https://us02web.zoom.us/meeting/register/tZctd-2rrz4qGdIuN0wSpmYDVj5_6Ww7NN4p
After registering, you will receive a confirmation email containing information about joining the meeting.

Get ready for a great workshop and we hope to see many first and second years there!

– ISSessions Exec Team