ISSessions 2020-11-12

Date: 2020-11-12 (THURSDAY)
Time: 19:00 – 21:00
Location: VIRTUAL (Discord + YouTube)

Agenda:
19:00 – Kickoff – Kurt
19:10 – News Roundup – Adam & Cem
19:30 – Project Den – Louai
19:55 – Break
20:00 – Protecting the Crown Jewels – Prashant Lal

This week’s ISSessions is going to be a treat for you all! Make sure you join in at 7:00 PM EST on Thursday, November 12th, either through Discord or YouTube.

This week we have our community manager Cem and alumni Adam delivering their hot takes on the news followed by a Project Den from vice presidente Louai. Then, after a short break we will come back with our night’s special guest speaker – Prashant Lal. Prashant is an Enterprise Architect working at Oracle Canada ULC and will be presenting a fascinating talk on “Database Security: Protecting the Crown Jewels.”

Database Security: Protecting the Crown Jewels
According to Forbes, there are 2.5 quintillion bytes of data created every day. To even wrap your head around that number is difficult, but how about keeping it secure?

Prashant is an Enterprise Architect working at Oracle Canada ULC, and he has graciously offered to show us how Oracle converged databases are the future of database security. Just as the smartphone combined a camera, notebook, laptop, and browser into an exceptionally convenient form factor, Oracle aims to do the same with databases. This convergence was implemented in response to the modern, large-scale sophisticated web applications that required much more functionality(and inherently more security) than what other companies were providing. We hope to see you all there! You definitely wonโ€™t want to miss this ISSessions meet-up ๐Ÿ™‚

– ISSessions Executive Team

ISSessions 2020-10-29

Date: 2020-10-29 (THURSDAY)
Time: 19:00 – 21:00
Location: VIRTUAL (Discord + YouTube)

Agenda:
19:00 – Kickoff – Kurt
19:10 – News Roundup – Adam & Yusef
19:30 – Project Den – Homelab Headache – Kurt
19:50 – Break 20:00 – The Wonderful World of Information Security – John Simpson

For those who just had midterms, we hope you did well and can now rest easy during your reading week! That being said, there is no better way to relax than joining us for a chill and laid back ISSessions this Thursday, October 29th @ 7:00 PM. We have a great night planned with some games towards the end ๐Ÿ™‚

Starting off the night, we have the news roundup by Adam & Yusef! Following the news, Kurt will present a project-den focused on using old enterprise hardware in homelabs. Then, John Simpson will be giving his renewed 2020 version of “The Wonderful World of Information Security.” A great talk that John gives annually to help first and second years out with ISS. Lastly, join us to blow off some steam with your fellow peers playing JackBox games![

John Simpson
John graduated from the Sheridan Information Systems Security program in 2015 and is currently a vulnerability researcher and team lead with Trend Micro in Toronto. He started his career with a coop position at Deloitte and stayed on board after graduation, working in Security Operations Center engineering and vulnerability assessment/penetration testing roles.

In his current position, John reverse engineers vulnerabilities to write proof-of-concept exploits and devise network detection strategies to catch exploitation attempts. During the last 4.5 years in his current role, he has discovered several new vulnerabilities, authored blog posts for Trend Micro and Zero Day Initiative, and spoken at several conferences.

The Wonderful World of Information Security
John will be presenting the 2020 version of his annual talk “The Wonderful World of Information Security,” which aims to provide students new to the program with an overview of the potential career paths in the Information Security industry as well as his tips for success in navigating the Information Systems Security degree program at Sheridan and the early stages of a career in InfoSec.


Thereโ€™s no doubt this will be a fun ISSessions – come and see for yourself! Learn, laugh, and play some games with your wonderful club this Thursday! Weโ€™ll see you all then AND remember… be there or be sacredโ€ฆ

– ISSessions Exec Team

ISSessions 2020-10-08

As spooky szn begins ๐Ÿ ๐Ÿ‘ป ๐ŸŽƒ and the cold hits ๐Ÿฅถ๐Ÿงฃ๐Ÿงค, we want you to join us for a wonderful meet-up this Thursday, October 8th, from 7:00 PM to 9:00 PM.
Lee Kagan will be giving us an awesome presentation on OSX (Apple’s OS) Exploitation.

Date: 2020-10-08 (THURSDAY) 
Time: 19:00 – 21:00
Location: VIRTUAL (Discord + YouTube) 

Agenda
19:00 – Kickoff – Kurt ๐Ÿ”‘ 
19:10 – News Roundup – Nash & Adam ๐Ÿ—ž 
19:30 – Rickโ€™s Repo Rundown – Nick ๐Ÿ‘‘ 
19:45 – Break ๐Ÿ›Œ 
20:00 – An Introduction to OSX Exploitation – Lee Kegan ๐Ÿง  ๐Ÿคฏ

Hey there everyone!

All of us at ISSessions hope that the first month of your 2020 Fall term has gone well. We started on a great note with a very successful Panel and the Beginner’s BASH workshop – We have no plans to slow down now!

As spooky szn begins ๐Ÿ ๐Ÿ‘ป ๐ŸŽƒ  and the cold hits ๐Ÿฅถ๐Ÿงฃ๐Ÿงค, we want you to join us for a wonderful meet-up this Thursday, October 8th, from 7:00 PM to 9:00 PM. Kurt will kick-off the meeting with some great tools that Sheridan provides for us students. Then the good old News Roundup with Nash & Adam followed by Ricks Repo Rundown with Nick. After a short break, our good friend of the club – Lee Kagan will be giving us an awesome presentation on OSX (Apple’s OS) Exploitation. I know I’m excited about this talk! 

An Introduction to OSX Exploitation 

As more Apple products become integrated into the modern environment, OSX is finally getting the offensive attention it deserves. As a result, it’s becoming critical for attackers and defenders to understand the attack surface as well as the unique challenges this OSX poses. 

This talk will walk through the basics of attacking OSX. What are Plists? Are DyLibs meaningful? Does ActiveDirectory work with Macs? What the heck is JamF? 

Lee will cover all of these and more in this introduction to OSX exploitation. 

Lee Kagan

Lee started in the IT and security world in 2010 in Toronto, Canada. When Lee isn’t tip-toeing through enterprise’s Active Directory environments he’s running the DerbyCon Toronto Community Chapter, the Canadian Collegiate Cyber Exercise (C3X), and as an instructor teaching Canadian offensive and defensive professionals ways to up their game. Lee has spoken at multiple events and conferences such as BSides and SecTor. In his spare time, Lee is an executive chef at a restaurant in his mind. 

Lee specializes in offensive RnD with a focus on ActiveDirectory and defensive measures evasion techniques, malware development in C#/C++, C2 design and management.

Lee is the practice lead for Adversarial Collaboration (purple team) at Lares. Prior to Lares, Lee was the Sr. offensive RnD specialist at Symantec.

As school picks up, blow off some steam with ISSessions while learning about the latest in InfoSec! Be there or be scaredโ€ฆ โ˜ ๏ธ ๐Ÿ’€ย 

– ISSessions Exec Team ๐Ÿ‘พ ๐ŸŽƒ