You are here

PLUG news

Topic for Security meeting on 09/19

PLUG - Thu, 2019/09/12 - 14:00

At this month's Security meeting we'll be treated to the second part for Donald McCarthy's passiveDNS talk.

Donald McCarthy: passiveDNS For fun and Profit (part2)

Description:
Part one of this presentation covered the architecture and theory of passive DNS (pDNS). This portion of the presentation will focus on the practical uses of pDNS data for red team, blue team, threat intelligence, and security research operations.

Biography:
Mac is a 17 year veteran of the IT industry. He has experience worked for organization ranging in size from 10 to 200,000+ employees. Mac has been involved in information security for the past 9 years with organizations in the academic, healthcare and financial, and public sectors. Mac is a linux enthusiast with a passion for using large compute clusters to help solve the most challenging problems in security analytics. He has given presentations globally on business email compromise and credentials stuffing. Mac currently serves as the Director of Field Operations for Open Source Context.

Topics for Sep 12th's meeting

PLUG - Mon, 2019/09/09 - 10:08
We'll have 2 presentations this month:

Austin Godber: Stream Processing with Python and Kafka

Description:
A quick intro to Kafka, a distributed log system, and how to interact with it using Python.


der.hans: GNU date, an extended tour

Description:
GNU date, the pocket multi-tool for time manipulation.
It slices. It dices.
It travels all of time.
It's epochical.

Attendees will learn about:

* date and time formatting
* date and time manipulation
* creating random dates
* time zones
* fun with flags
* the beginning of time
* why to cashout in early January 2038

Biography:
der.hans is a Free Software, technology and entrepreneurial veteran.

He's chairman of the Phoenix Linux User Group (PLUG), BoF organizer for the Southern California Linux Expo (SCaLE), and founder of the Free Software Stammtisch and Stammtisch Job Nights.

Currently, he's a Customer Data Engineer at Object Rocket. Most likely anything he says publicly was not approved by $dayjob.

https://floss.social/@FLOX_advocate
https://mastodon.social/@lufthans

PLUG Security meeting topic for Aug 15th

PLUG - Thu, 2019/08/08 - 09:45

Gavin Klondike: Machine Learning for Security Analysts

Description:
Today, over a quarter of security products for detection have some form of machine learning built in. However, “machine learning” is nothing more than a mysterious buzzword for many security analysts. In order to properly deploy and manage these products, analysts will need to understand how the machine learning components operate to ensure they are working efficiently. In this talk, we will dive head first into building and training our own machine learning models using the 7-step machine learning process.

Biography:
Gavin is a senior consultant and researcher who has a passion for network security, both attack and defense. Through that passion, he runs NetSec Explained; a blog and YouTube channel which covers intermediate and advanced level network security topics, in an easy to understand way. His work has given him the opportunity to be published in industry magazines and speak at conferences such as Defcon and CactusCon. Currently, he is researching into ways to address the cybersecurity skills gap, by utilizing machine learning to augment the capabilities of current security analysts.

Topics for Aug 8th's meeting

PLUG - Mon, 2019/08/05 - 09:28
Dhruva Lokegaonkar: Shell Scripting for everyone

Description:
An introduction to Shell scripting.
- The basics of stringing together various commands
- Pipes and Parallelization
- Conditionals and Loops
- How to use these things to create useful scripts, like creating basic website generators, background switches, keyboard hotkeys, etc.

Biography:
Dhruva is a ASU Computer Science Freshman. He's been using Linux for the past 5 Years. He's been involved with the Indian Linux Users Group Bombay (ILUG-BOM) in their mission to introduce Linux to High School and College students by making it a default in the Indian Curriculum.


Austin Godber: Stream Processing with Python and Kafka

Description:
A quick intro to Kafka, a distributed log system, and how to interact with it using Python.

PLUG Security meeting on 7/18

PLUG - Thu, 2019/07/11 - 20:00
At this month's PLUG Security meeting:
Donald McCarthy: passiveDNS For fun and Profit (part1)

For more information:
http://phxlinux.org/index.php/meetings/20-plug-security.html

Description:
If you DNS infrastructure has a bad day, your network has a bad day. If your DNS infrastructure has a good day, something else is bound to go wrong. PassiveDNS generally wont help you fix either.

PassiveDNS is a historical look at observed DNS queries over time. It is akin to The Internet Archive's Way Back Machine, but for DNS zones. Its utility as an operations and security tool is valuable and not easily replaced by another type of data.

In this presentation we will cover exactly what passiveDNS is and isn't, passiveDNS architecture, some security use cases, and if time allows some live demonstration.

In part 2 of the presentation (another month) I will demonstrate some passiveDNS tooling and more in depth practical knowledge to turn theoretical use cases into automated assistance for a SOC or NOC.

About Donald:
Donald "Mac" McCarthy is a 15 year veteran of the IT industry with the last 8 years focused on InfoSec. He has worked on a variety of different systems ranging from cash registers to super computers. It was while serving as a systems administrator for a scientific computing cluster that he discovered his passion for using linux for highly distributed complex tasks. His current focus is using linux with open source technologies like kafka and elastic search to build tooling for security analysts and network operations. He is a proud Veteran of the United States Army and recently relocated from Atlanta to the East Valley.

PLUG meeting on Jul 11th

PLUG - Mon, 2019/07/08 - 23:01
We'll have 2 presenters this month with a distribution theme.

Artemii Kropachev: Red Hat Enterprise Linux 8 Beta 1 Overview

Description:
Learn about the first version release of Red Hat Enterprise Linux in over four years. The latest release features unprecedented ease of deployment, ease of migration, and ease of management enabling you to upgrade existing customers and attract new ones.
Red Hat Enterprise Linux 8 gives organizations a stable, security-focused, and consistent foundation across hybrid cloud deployments—and the tools they need to deliver applications and workloads faster with less effort.

About Artemii:
Worldwide IT expert and international consultant with over 20 years of high level IT experience and expertise. I have trained, guided and consulted hundreds of architects, engineer, developers, and IT experts around the world since 2001. My architect-level experience covers DC, Clouds, DevOps, NFV solutions built on top of any Red Hat and Open Source technologies. I am one of the highest Red Hat Certified Specialists in the world.


der.hans: Hey Buster! Debian 10 released

Description:
Debian 10 brings with it many ch-ch-changes.

Reproduciable Builds, Wayland, AppArmor, nftables, cups.

10 hardware architectures, 59000 packages, 28,939 source packages, 11,610,055 source files, and 76 languages.

Stretch updates.

Get or upgrade to Debian 10 now.

Coming soon on Blu-ray.

About der.hans:
der.hans is a Free Software, technology and entrepreneurial veteran. He is a repeat author for the Linux Journal with his article about online privacy and security using a password manager as the cover article for the January 2017 issue.

He's chairman of the Phoenix Linux User Group (PLUG), BoF organizer for the Southern California Linux Expo (SCaLE), and founder of the Free Software Stammtisch and Stammtisch Job Nights.

He often presents at large community-led conferences (SCaLE, SeaGL, LFNW, Tübix) and many local groups.

https://floss.social/@FLOX_advocate
https://mastodon.social/@lufthans

Topic for the Security meeting on June 20th

PLUG - Wed, 2019/06/12 - 11:05

Aaron Jones: Introduction To Assembly - Part II

Description:
Introduction To Assembly Language is the second half to my reverse engineering course. This is part two of a multi part educational series on lower level software development and reverse engineering. Many developers and security experts are not familiar with assembly language or the lower levels of their hardware. This course is intended to begin familiarizing you with assembly language in order to build the foundation for future courses on reverse engineering.

Biography:
Aaron, the owner of Retro64XYZ, is a software developer who currently creates applications for law enforcement. He is also an AZ POST certified public speaker. He earned a B.Sc., in Computer Information Systems from Park University in 2013 and an M.A., in Intelligence Analysis with a focus in Cyber Security in 2014. During that period of his life he took a double course load and completed his Masters with a 3.695 GPA in a year. He has been the recipient of recognition from the El Paso Police Department, State Of Texas, Texas Military Forces, Chandler Police Department, and others.

Aaron is also active in the community as the founder of the Phoenix Linux Users Group Cyber Security Meetup and regularly teaches members of the public a myriad of topics related to Cyber Security. His audience includes students, teachers, law enforcement, military, government officials, and concerned members of the public with a strong desire to learn what is going on in the world of technology.

When Aaron isn’t teaching, working, or spending time with his family, he enjoys relaxing at the pond with a fishing pole while not catching fish, operating a pistol at the shooting range, or reading books. He owns a Sega Saturn and a Sega Dreamcast and his favorite video games are Panzer Dragoon, Road Rash, Phantasy Star Online 2, and Power Stone. He is currently engrossed in building content for his site and looking for more ways to reach the public. You should reach Aaron through his Mastodon or on Keybase. He would love to hear from you, answer your questions, or find out about the projects you are involved with.

 

Topics for Jun 13th's meeting

PLUG - Wed, 2019/06/12 - 10:48
Bill Lindley: Control The World (or whatever you want) With Linux and a Raspberry Pi

Description:
We will see how a $35 Raspberry Pi (or even the $9 version), a breadboard and a bit of circuitry connected to the SPI and I2C buses can control pretty much anything: a thermostat; a "self driving" model car; or a clock-radio that also displays software build progress and your corporate network uptime status.

Biography:
Mr. Lindley has been in the computer industry since he sold his first program (a printer driver for Heathkit HDOS) in 1980. He has used system from the earliest 8-bit microprocessors, through the PDP-11 and VAX, up to IBM mainframes, and has managed to write programs that did not crash on most of them. Mr. Lindley has been a GNU/Linux user since 1992 and has been free of proprietary software since 2001. Most recently he has been pleased to be an adjunct professor at Mesa Community College.


Rajendran Rathinasabapathy: In the crossroads of Agility, Microservices and Cloud computing

Description:
Being a project manager for a while evolving along with the evolution in the IT landscape of agility, microservices and cloud computer, I see a pattern in the painful ordeal teams go through, especially when collaboration is needed more than ever to build systems. The topic is very relevant when highly individualistic opensource programmers work together. In this presentation, as the subject is vast, I layout a list of critical blind spots and pitfalls the teams can avoid while designing and developing larger applications.

Biography:
Working in IT for the past 20 years from being a developer to a portfolio manager. Currently involved in strategizing CI/CD for a sub-domain in info security. with varied tech stacks. I am a proponent of microservices and also a scrum master. In my free time, I learn to make digital an analogue circuits. I teach programming and robotics to kids and I am learning Jiu-Jitsu :-)

Subscribe to LuftHans aggregator - PLUG news