July 2020 – Password Attack and Defense

July 1, 2020August 6, 2020 / roanokeinfosec

We’re back! RISE is back for the month of July. Once again, we will be hosting a virtual meeting, but we are hopeful that we will be able to meet in person again very soon. This month we are going to cover end to end password attack and defense. So, what does that mean exactly? First, we will cover how nefarious actors steal your user’s credentials and how they use it, then we will discuss what free tools are available to audit passwords and defend against such attacks. Topics covered will be things like Hunter.io, Phishing-Frenzy, Password Spraying, Hash-Cat, DPAT, have i been pwned, MFA and others.

This will be a high-level overview of the entire kill chain process however if we determine that more discussion is needed in one area, we will discuss getting it on the calendar for a more in-depth review. I am looking forward to seeing all of you at the next meeting. Be on the look out for more information regarding online meeting information.

Meeting scheduled for 5:30 pm, July 9^th. Online meeting details sent via email, please subscribe to the mailing list for more information.

See you all soon

Speaker BIO:

rob

Robert Garbee

Twitter: @robgarbee

RISE: Roanokeinfosec.com

Robert Garbee is a Cyber Security Engineer working for the Carilion Clinic Information Security Department located in Roanoke Va. In this role, Robert is responsible for performing threat analysis, network assessments and compliance auditing for enterprise network systems located in various locations scattered across Virginia. He has more than 25 years of experience in information technology and during that time has held positions in information security, information technology and industrial security. His certifications have included Microsoft Certified Systems Engineer (MCSE), Cisco Certified Network Associate (CCNA) and most recently Certified Information Systems Security Professional (CISSP) and Certified Ethical Hacker(CEH). Robert is also a graduate of Liberty University and holds a Bachelor of Science degree in Business Management Information Security.

As a founder of the Roanoke Information Security Exchange (RISE) Robert has been asked to present to both local business leaders and community service groups. Additionally, Robert has provided commentary for featured articles in the Roanoke Times and for WSLS News 10 in Roanoke, VA.

Robert can be contacted via the RISE website at Roanokeinfosec.com, or via email at robgarbee@yahoo.com or via Twitter @robgarbee.

May 2019 – Sniffing Active Directory with Bloodhound

April 28, 2019May 1, 2019 / roanokeinfosec / Leave a comment

Logo for Bloodhound

Many organizations, large and small, maintain an Active Directory environment. Over time even well-managed AD environments will suffer the crud of forgotten objects. Emergency changes and other unique additions often create resources that don’t follow established governance policy. Coping with system sprawl is a fact of life in most organizations. Our tools must help us cope with this and ensure that unintended vulnerabilities are introduced into the environment.

Continue reading →

Cancelled – October 2018 – Automatic Vulnerability and Risk Assessments using BotNet Technology

September 29, 2018October 11, 2018 / roanokeinfosec / Leave a comment

Update: Once again weather is not our friend. We will be cancelling our meeting tonight in hopes that we will be able to meet again next month in November. Please continue to check back for additional updated information.

See you all soon.

Continue reading →

We are in control

March 12, 2017 / roanokeinfosec / Leave a comment

il_340x270.856248116_48af

Well not so much really but here is a link to the slides from Randy’s presentation to help us get there. Thanks again to Randy to coming out and thanks you all of you for being there. Looking forward to seeing you all at the next one.

The link ->20CriticalControls-RISE2017<- The link

20170309_190250 20170309_190937 20170309_192349 20170309_192351 20170309_193135

We got the money

September 1, 2016September 1, 2016 / roanokeinfosec / Leave a comment

make it rain

We had another good meeting in August, Rob showed us all how to make it rain. We had some fantastic security discussions on various current topics afterwards as well.

Here are Rob’s slides, Risk Assessment, Technical Review and a few photos:

RISE – Roanoke InfoSec Exchange

The premier InfoSec group in the Roanoke, VA region!

Risk Assessment