As the year winds down, let’s take a moment to celebrate before the holidays officially take over! Join your fellow cybersecurity pros for our December social, it’s the perfect chance to decompress, share what you’ve learned this year, and enjoy a cold beverage.
Join us this Thursday, December 11th at 6:00 PM at Twisted Track Brewpub.
This is an informal gathering, meaning no agenda, just a great opportunity to connect with peers and swap tales from the front lines of information security.
🗣️ Call for Presentations (CFP) is OPEN for BSides Roanoke 2026!
Ready to share your knowledge? The Call for Presentations for BSides Roanoke 2026 is officially OPEN!
We’re looking for great technical sessions, deep dives, and unique perspectives for the conference on Friday, June 5th, 2026. If you have an idea, we want to hear it!
CFP Closes: February 2026! Start getting your talk ideas in now.
Conference Date: June 5th, 2026
Don’t miss the chance to be a part of the local infosec community’s premier event. Be sure to stay tuned to our shiny new website, https://bsidesroa.org, for all conference updates!
We’ve got a busy and exciting October planned for you! Please note the details for two separate events coming up this month.
Event 1: RBTC IT-Security, Defense Against the Dark Arts! Panel Demos
Join our colleagues at the RBTC (Roanoke Blacksburg Technology Council) for a fantastic evening of technical demonstrations! This year has something for everyone, and dinner and drinks are included.
Web Dev Security: A professional pentester demonstrates how web-XSS/JWTs are weaponized, and how to keep your stuff safe.
Red Teaming: The head of the VT ITSO Red Team (pentester) shares one of his custom scanning/reporting tools that he’s created himself and how he uses it to scan and assess VT network/host risks.
Malware Analysis: Drill into the methodology for tracking down a Linux endpoint infection with a bitminer, including detection, classification, and remediation.
Event 2: RISE Social – Your Pre-Holiday Decompression
Fall is officially here, and before the holiday season chaos begins, let’s gather for our last RISE social of the year! It’s the perfect time to grab a cold beverage (or pretend it’s pumpkin spice season) and decompress before the end-of-year sprint.
Join your fellow cybersecurity pros for a social gathering next Thursday, October 9th at 6:00 PM at Twisted Track.
This is your chance to log off, relax, and swap tales from your infosec adventures. There’s no formal agenda, just an opportunity to connect and maybe phish for some new insights from your peers. It’s a great time to patch into conversations about the latest trends.
As the days get shorter and the promise of cooler weather is in the air, we’re also entering a new season in the world of technology. The rapid evolution of AI is reshaping how we work and, more critically, how we manage data security. Just as we transition from summer to fall, our approach to cybersecurity must adapt to a changing landscape.
We invite you to our next RISE meeting this week for a timely talk: “Securing the Future — Data Security in the Age of AI.”
Our guest speaker, Trip Humphrey, Director of Data Science & AI at Carilion Clinic, will provide invaluable insights into this critical topic. Leveraging his extensive experience, Trip will cover:
How AI is transforming data usage and risk landscapes
Emerging threats and vulnerabilities introduced by AI technologies
Best practices for securing sensitive data in AI-powered environments
Ethical considerations and governance frameworks for responsible AI
Whether you’re a security leader, a technologist, or a business stakeholder, this conversation is essential for safeguarding your organization while harnessing the power of AI.
We look forward to seeing you there!
Event Details:
Date: Thursday, September 11, 2025
Time: 6pm
Location: Virginia Western Business/Science Building Room M302
Speaker: Trip Humphrey
Talk Title: Securing the Future — Data Security in the Age of AI
Meeting Details:
We will be meeting at Virginia Western Community College in the Hall Family Business/Science Building. Take the stairs to the left and go to the third floor and go to the CyberSecurity lab in room M302.
Hacker Summer Camp is now wrapping up, and with the back-to-school season just around the corner, why not take a moment to decompress before we get back to the daily grind?
Join your fellow cybersecurity pros for a social gathering next Thursday, August 14th at 6:00 PM at Twisted Track.
This is your chance to log off, relax, and swap tales from your infosec adventures. There’s no formal agenda, just an opportunity to connect and maybe phish for some new insights from your peers. It’s a great time to patch into the conversation about the latest trends, including how AI is hacking into our daily workflows.
Summer’s heating up, and so is the next Roanoke Infosec Exchange (RISE) meeting! Get ready to dive deep and PAN out some serious knowledge, because we’ve got a fantastic session lined up that’s going to make your security senses tingle.
We’re absolutely thrilled to announce that Regen Peterson will be joining us on Thursday, June 12th to deliver a talk that’s as cool as a summer breeze and as insightful as a perfectly executed exploit:
“Forging the Attack Path: A Deep Dive into PAN-OS Exploitation and Post-Exploitation”
In this talk, Regen will pull back the curtain on a recent attack path he discovered and successfully utilized in multiple real-world engagements. You’ll gain a unique perspective on how a chain of Palo Alto PAN-OS vulnerabilities can be leveraged, and critically, how post-exploitation steps were identified and simplified using a custom-developed tool. Think of it as mapping out the perfect summer road trip, but for attackers!
This presentation offers a compelling blend of the “Hacker Mindset” – exploring methodology and thought processes – with a more technical discussion of the specific vulnerabilities abused. Regen will also briefly touch on crucial prevention and detection strategies, so you can help keep your networks as chill as a pool party.
And for those who love live action, if the demo gods are with us and time permits, Regen plans to walk through the entire attack chain on his own vulnerable VM! Prepare for some real-time fireworks!
This is a fantastic opportunity to learn from real-world experience and enhance your understanding of modern attack techniques and red team operations. Whether you’re a seasoned security professional or just starting out, you’ll walk away with valuable insights to Alto-er your security game.
Event Details:
Date: Thursday, June 12th, 2025
Time: 6pm
Location: Virginia Western Business/Science Building Room M302
Speaker: Regen Peterson
Talk Title: Forging the Attack Path: A Deep Dive into PAN-OS Exploitation and Post-Exploitation
Talk Description:
Through the talk we’ll be discussing a chain of PAN-OS vulnerabilities used in an attack path I recently found and used successfully in multiple real world engagements, as well as looking at how these post-exploitation steps were identified, and the tool I developed for simplifying these attacks. This allows the talk to serve as a combination of the typical “Hacker Mindset” talks (methodology, etc) and a slightly more technical discussion of each of the specific vulnerabilities abused in both the exploitation and post-exploitation. We’ll also very briefly touch on prevention and detection of these attacks. Lastly, I do have my own vulnerable VM, so if the demo gods and the clock allow it then we will be able to walk through it all in real time.
Meeting Details:
We will be meeting at Virginia Western Community College in the Hall Family Business/Science Building. Take the stairs to the left and go to the third floor and go to the CyberSecurity lab in room M302.
Please mark your calendars and spread the word! We look forward to seeing you there for another engaging RISE meeting. Don’t miss out on this hot topic!
Ready to swap your keyboard for a corner office? Or maybe just curious how to navigate the wild world of IT leadership? Then join us for the next RISE meeting!
Mark your calendars for April 10th at Virginia Western Community College!
We’re thrilled to welcome Rob Garbee, Director of Information Security at the Carilion Clinic, who’ll be sharing his epic quest “From IT Specialist to IT Strategist: My Move to Management.” Think of it as a cheat code for your career!
Here’s the lowdown:
Ever wondered what it’s really like to go from fixing firewalls to leading a team? Rob’s got the inside scoop! He’ll be dishing out the dirt (the good kind!) on his journey from network security engineer to the big boss. Expect tales of triumph, epic fails, and everything in between.
In his own words (or close to it):
“Are you contemplating a leap into management or intrigued by what such a transition entails? Join us for an enlightening presentation where I will recount my journey from a network security engineer to the Director of Information Security. I will candidly discuss the highs, the lows, and everything in between. I’m looking forward to giving you a real, unfiltered look at my move from the trenches to management, and hopefully, you’ll find it useful.”
Basically, Rob’s going to drop some knowledge bombs that could seriously level up your career. Don’t miss out on this chance to learn from someone who’s been there, done that, and probably has the t-shirt.
We’re looking forward to seeing you there! Get ready for some serious insights, a few laughs, and maybe even a networking opportunity or two.
See you on April 10th!
Meeting Details:
We will be meeting at Virginia Western Community College in the Hall Family Business/Science Building. Take the stairs to the left and go to the third floor and go to the CyberSecurity lab in room M302.
Sorry for the last minute invite; we decided to interrupt our regularly scheduled programming to enjoy this warm spell we are having. We’d like for you to join us for a casual social gathering at Twisted Track Brewery on Thursday, March 13th!
The weather forecast is looking fantastic, and we thought it would be a perfect opportunity to enjoy the unseasonably warm spring and connect with fellow cybersecurity professionals in a relaxed setting.
This will be a great chance to network, share insights, and simply enjoy a pleasant evening with your colleagues.
We apologize for any inconvenience for the last minute scheduling, and we hope you can join us for this fun social event. We look forward to seeing you there!
And a little teaser for next month: Get ready for Rob’s insightful talk, where he’ll share valuable lessons learned from his transition from a technical contributor to a leadership position. Think “From Bud to Boss” in the cybersecurity world! Rob’s journey over the past year has been filled with challenges and triumphs, and he’s eager to share his experiences with you. More details on this to come soon.
Happy New Year! We hope you had a fantastic holiday season and are ready to dive into a year of exciting infosec learning. Our first Roanoke Infosec Exchange (RISE) meeting of 2025 is scheduled for February 13th, and we’re kicking things off with a very serious presentation.
Schrodinger will be giving a talk titled “Tor: Spooky Internet for Everyday Criminals”. He’s provided the following (completely non-satirical) abstract:
“Tor is the darkweb. The darkweb is full of hackers, traffickers, thieves – bad people. The darkweb is a bad place. You are not a bad person. So you don’t go to the darkweb. Bad people hide from the government on the darkweb. You have nothing to hide, since the government takes care of good people like you.
In this talk, we will look into this bad place and learn why it is so bad. We will talk about the evil networking, cryptography, and software used by real criminals every single day. Last of all, I will instruct you on why you should never ever visit this terrible corner of the internet.
There will be no satire. This is all very serious.“
So, prepare yourselves for a very serious and informative evening as we delve into the dark (and apparently very serious) world of Tor. We look forward to seeing you there to start the year off right with some new infosec knowledge!
Meeting Details:
We will be meeting at Virginia Western Community College in the Hall Family Business/Science Building. Take the stairs to the left and go to the third floor and go to the CyberSecurity lab in room M302.
We’re excited to announce our December RISE meeting!
Calling all cybersecurity enthusiasts! Get ready to unleash your inner cyber sleuth as we explore SANS Holiday Hack Challenge 2024 with our very own Jared Register.
Mark your calendars!
Date: Thursday, December 12th, 2024
Time: 6:00 PM
Location: Virginia Western, Business/Science Building, Room M302
What to Expect:
This session, much like our popular event last year, will offer a sneak peek into the exciting world of the SANS Holiday Hack Challenge. Jared will guide us through the festive challenges designed to test your cybersecurity skills in a fun and interactive way.
Why You Should Join:
SANS Holiday Hack Challenge is a fantastic game for anyone interested in cybersecurity, regardless of experience level. It’s a Capture the Flag (CTF) competition disguised as a holiday wonderland, brimming with puzzles and challenges that will put your security problem-solving skills to the test.
Remember: SANS Holiday Hack Challenge is not just about holiday cheer; it’s about learning new skills, keeping up with latest trends, and expanding your cybersecurity knowledge.
About the Speaker:
Jared Register is an IT enthusiast and cybersecurity practitioner with over 10 years of experience. He currently serves as a Cybersecurity Engineer at a hospital system and focuses on the “blue team” side of cybersecurity. Jared holds a CISSP and is pursuing his Master’s in Information Systems Security Engineering from SANS.
Meeting Details:
We will be meeting at Virginia Western Community College in the Hall Family Business/Science Building. Take the stairs to the left and go to the third floor and go to the CyberSecurity lab in room M302.
Get ready for a spine-tingling November RISE meeting on Thursday, November 14th at 6PM at VWCC (details below). We’ve got a chilling lineup of spooky good tech talks and announcements.
A Hauntingly Good Talk
First up, Ben, Aaron, and Mark of the BSides Roanoke Badge Team will be conjuring up a spellbinding presentation titled “Connecting the Conference”. Prepare to be amazed as they unveil the secrets behind their magical creations. They shared the following:
This presentation isn’t your typical tech talk – prepare to enter the whimsical world of electronic badge creation! We’ll journey through the entire process, from the initial spark of an idea to holding a fully functional, interactive badge in our hands. But this is no ordinary badge. It’s a pocketful of puzzles, a platform for playful hacking, and a testament to the fusion of creativity and technology. Imagine a badge that can communicate with its brethren, battling it out in a silent game of rock, paper, scissors, all thanks to the magic of near-field communication (NFC).
Get ready to explore the fascinating world of microcontrollers, firmware, and the intricate dance of bits and bytes. We’ll unravel the mysteries of crafting a custom circuit board, breathing life into LEDs that blink in Morse code, and even constructing a central “kiosk” that acts as the beating heart of our badge ecosystem. Brace yourself for tales of coding triumphs and troubleshooting tribulations, all seasoned with a dash of humor. We’ll share the secrets of designing puzzles that range from deciphering flashing lights to cracking codes hidden in a “wacky font.” Oh, and be warned, you might even encounter a riddle about an “army of the undead.” By the end, you’ll leave not only with a newfound appreciation for the art of electronic badge building but also be armed with the knowledge to embark on your own badge building adventure.
Call for Dark Arts Demonstrations
Are you a wizard of the digital realm? Do you possess the power to thwart the forces of darkness? We’re seeking skilled practitioners to showcase their abilities in RBTC’s Defense Against the Dark Arts session. Submit your proposal to unleash your arcane knowledge at https://go.vacr.io/2024-dark-arts-rfp.
Don’t miss this opportunity to gather with fellow tech enthusiasts and delve into the shadowy corners of the digital world.
See you there, if you dare!
November 14th Meeting Details
We will be meeting at Virginia Western Community College in the Hall Family Business/Science Building. Take the stairs to the left and go to the third floor and go to the CyberSecurity lab in room M302.
RISE - Roanoke InfoSec Exchange 