30min Social -- Discuss tools, network, and discuss current issues
http://seckc.eventbrite.com/#
(2x) 30-60min formal presentation
45min Presentation 1: [Bryan Geraghty @archwisp]
Title: sqlmap demo
sqlmap is an open source penetration testing tool that automates the process of detecting and exploiting SQL injection flaws and taking over of database servers. It comes with a powerful detection engine, many niche features for the ultimate penetration tester and a broad range of switches lasting from database fingerprinting, over data fetching from the database, to accessing the underlying file system and executing commands on the operating system via out-of-band connections.
Title: sqlmap demo
sqlmap is an open source penetration testing tool that automates the process of detecting and exploiting SQL injection flaws and taking over of database servers. It comes with a powerful detection engine, many niche features for the ultimate penetration tester and a broad range of switches lasting from database fingerprinting, over data fetching from the database, to accessing the underlying file system and executing commands on the operating system via out-of-band connections.
45min Presentation 2: [Jayson Street @jaysonstreet]:
Title: Love letters to Frank Abagnale (How do I pwn thee let me count the ways)
In previous talks I have shown how I have used emails to gain entry into places I should not have been. In this talk I give an in depth explanation on how I use emails not just for phishing but to gather intel & make a way in. I will go over the steps to recon your target. To find important information to make sure the email is not just believed but acted on in the way you desire. I will also show you how to create a convincing get out of jail free card. That will aid in avoiding being detained but will also get employees to aid you in your attack.
Title: Love letters to Frank Abagnale (How do I pwn thee let me count the ways)
In previous talks I have shown how I have used emails to gain entry into places I should not have been. In this talk I give an in depth explanation on how I use emails not just for phishing but to gather intel & make a way in. I will go over the steps to recon your target. To find important information to make sure the email is not just believed but acted on in the way you desire. I will also show you how to create a convincing get out of jail free card. That will aid in avoiding being detained but will also get employees to aid you in your attack.
SeckC is THE premier gathering of information security professionals in KC. Are you an information security professional? You are if you (ever) write firewall rules, read log files, apply patches, follow Bugtraq, help select products, rack and stack security appliances, find vulnerabilities, write secure code, test other people’s code, write policies, manage people who do any of these things, assist people who do any of these things, or just want to one day do any of these things.
0 Response to "May 8th: SecKC - SQLMap Demo by Bryan Geraghty and Love Letters to Frank Abagnale by Jayson Street"
Post a Comment