CANCELLED – March 2020 – Social Gaming Night

We apologize for the inconvenience – due to work-related preparations for the on-going COVID-19 situation we must cancel tonight’s social meet-up.

The Game of Life: Century Edition, special technology edition pack Laugh Cartoon, Cartoon Jokes, Funny Cartoons, Funny Comics, Funny Cute, The Funny, Hilarious, Computer Jokes, Technology Humor, Humor, Funny
About once a year RISE holds an event with no formal topic or presenter. We use these meetings to open the floor to questions or general discussion and socialize with those sharing a common interest in InfoSec. This year we wanted to try something different – a social gaming night for the RISE community.

Continue reading

January 2020 – An InfoSec Journey

While we often cover technical content, RISE exists to serve and grow the InfoSec talent in the Roanoke area. “How do I get started in InfoSec” is a common question from those trying to break into the profession. Perhaps this is you. Or perhaps you want to pursue InfoSec but have doubts that hold you back. Maybe you hesitate because of a lack of a degree, lack of contacts, or lack of experience. Resolve to come to the January RISE meeting to hear Ken Nevers’ journey to InfoSec.

Continue reading

December 2019 – Wireless Intrusion Detection

We spend a lot of time discussing the on-line portion of InfoSec: application vulnerabilities, buffer overflows, log review, and network traffic analysis. But physical security remains an important part of an organization’s plan for dealing with threats. Environments that house particularly sensitive data may need to track or detect wireless devices for inventory tracking and secure area sanitization.

Continue reading

October 2019 – Threat Intel 101

Because nobody actually teaches this stuff in school
The term Threat Intelligence covers a lot of ground, from a known-bad IP address shared on Twitter to the tactics of a state-sponsored hacking group described in a classified DoD report. If you have access to the latter and use that kind of knowledge on a regular basis this talk probably isn’t for you. But if you’re interested in how you can use knowledge of your potential adversaries for network defense, read on!

Continue reading

September 2019 – Capture the Flag Demonstration

Note: This cooperative event will start at 6:30pm!

Capture the Flag challenges offer the opportunity to improve your InfoSec skills whether you are a seasoned penetration tester or just starting your journey. An InfoSec novice may not sweep the competition but they will certainly improve their knowledge. Trying new things can be hard especially in a profession that contains talent that, at times, seems untouchable. Let’s calm those fears with a CtF demonstration and review.
Continue reading

Jan 2018 – SANS Holiday Hack Challenge Party

 

 

PandR

Hope everyone had a great holiday break!  Our next RISE meeting will be this coming Thursday the 11th at 5:30 pm R&K Solutions.  We will be trying our hand at the SANS 2017 Holiday Hack.  Please see the link below to setup your account and then bring your laptop on the 11th.  While we won’t be getting through the entire thing we will have a chance to hang out and share ideas.  This is an excellent opportunity to learn some new chops and to show off the ones you have.   Come on out, you don’t want to miss out on this year’s event.

https://holidayhackchallenge.com/2017

R&K Solutions

2797 Frontage Rd NW

Roanoke, VA 24017

Let’s do this!!!

Pandr2

 

 

Jan 2017 – Open Mic Night

open-mic

 

We had a great time at our December meeting trying our hand at the SANS Holiday Hack and we are planning on our next meeting being just as entertaining. This month we will having an “Open Mic Night” at ECPI on January 12th at 5:30pm.

Here’s how it works, collect those burning IT Security questions and bring them to the group. We will give everyone an opportunity to ask the group questions and then see what we as a group of security professionals can contribute as a whole. The idea is that one of us is never as smart as all of us so let’s share our questions and our knowledge to better secure the valley. If you don’t have any questions that’s fine, we still need you to share your experiences with those of us that do have questions.

We look forward to seeing everyone on Thursday the 12th at ECPI.

Dec 2016 – SANS Holiday Hack Challenge Party

santa1

 

 

 

 

 

 

 

The SANS Holiday Hack Challenge is going to be released on Dec 9th, we’re going to party on Dec 15th:

santa2

 

 

 

 

 

 

 

 

If you’re not familiar with the challenge it is an annual event put on by Ed Skoudis and his team. It is essentially a game that involves a series of cyber security challenges designed to get you to learn a wide variety of skills. The team does a phenomenal job. It has elements for all skill levels and hints as you go along the way. Last year’s challenge was EPIC and I think my wife was ready to kill me if I didn’t stop playing. I’ll warn you, it can get addictive.

166-addiction

The challenges are kept online each year so you can continue to play, even if you didn’t complete it by the deadline. Here is last year’s challenge if you want take a look: https://holidayhackchallenge.com/ This link will likely update to the 2016 challenge on 12/9. If so, here is a list of past challenges: https://pen-testing.sans.org/holiday-challenge/

I can honestly say, after playing last year, I have looked forward to this year’s challenge all year long. My wife, maybe not so much, since I had my head buried in my laptop for 2 weeks last time 🙂 Here are just a few of the things I either learned about, or added skills to while playing last years challenge: sed, awk, scapy, python, JSON, SQL injection techniques,  numerous web application pentesting techniques, Burp Suite, mondoDB, firmware extraction, DNS CnC and data exfil. And when I wasn’t pulling out my hair, I had an absolute blast doing it!

Join us on 12/15 to work on the Holiday Hack Challenge. It is for all skill levels and you will be surprised how much you will learn. We will have wifi access available so everyone can work on the challenge. If you are a student and want to participate but don’t have a laptop, let us know and I will make arrangements so you will have somethig to work on.

To make the best use of the time at the party, go ahead and sign up for an account once the challenge is posted on 12/9.  You can start playing anytime after you get an account. I  also recommend having some sort of virtualization software on your laptop such as VirtualBox or VMWare Player, both are free. And having a VM running Kali set up. Or if Kali is your main OS you may want to have a Windows VM setup. All of that will aid you in the challenge.

gladiator

As usual we’ll have beer/soda and snacks. Just bring your brains because you’re going to need them.

dan-akroid-santa

The meeting will be at 5:30pm on 12/15 at R&K Solutions, 2797 Frontage Rd NW, STE 1000, Roanoke, VA 24017. Google Maps.