Please do not close or refresh this window...
Friday, 14 October 2016 9:00 AM - Saturday, 15 October 2016 7:00 PM PST
777 NE Martin Luther King Jr Blvd, Portland, OR, 97232, United States
Access code applied successfully. Remove
Invalid access code. Try again
Security analytics can be a difficult and expensive, but it doesn't have to be. Using the open-source ELK stack (Elasticsearch, Logstash, and Kiban) is a cost effective way to gain similar functionality found in more expensive commercial tools. The difficult part of the ELK stack mainly lies in complex normalization rules. This workshop will teach students the basics of normalizing machine data with Logstash. Additionally, students will learn how to create useful and powerful dashboards within Kibana to expose the most critical data.
In this workshop I will walk through how to get an IoT starter kit from Amazon up and connected to AWS IoT. I will begin with an overview of the AWS IoT architecture and the microcontroller board that is typical in IoT devices. Then I will help participants get the cross-compiler tools installed on their laptop, connect to a IoT board and upload new code to their board. Then we will walk through building the AWS demo and connecting each device to an AWS account and interacting with the board using the AWS IoT dashboard. Finally, I will talk about the threat model for these IoT architecture and how to take what we learned here to analyze the security of real IoT devices. Bob Loihl. I am a Software Engineer with 20+ years of experience developing business applications, leading teams and spreading the security word. I have a strong interest in delivering applications that are secure by design in an agile world. In order to do that better I am learning to break them using network and we
Security Operations Centers are a central place where security incidents flow through an organization, using technologies and ideas such as IDS, IPS, network flow monitoring, threat analysis and incident response to protect and secure an environment. However, the SOC of today is often out of date and out of touch with how we use our machines and data. This workshop will first provide an overview of how SOC's work, where they aren't keeping up with how we work today and methods for improving SOC workflow. Following the overview, attendees will be guided through setting up modular intrusion detection systems for physical and cloud servers. The systems will be configured to send their data to a central location where alerts can be analyzed. Attendees who want to follow along will be doing the following: Building Intrusion Detection Systems in Docker containers in a Linux virtual machine or natively on their system Saving these containers for use in other applications
Developing embedded firmware using Open Source tools is usually associated with arranging furniture in a dark room with the lights off. In this self directed workshop you will be able learn and experiment with an ARM Microcontroller and a JTAG debugger. The JTAG debugger allows you to shed light on what is happening inside the ARM microcontroller when you are running your program. Step, halt, watch variables and much more. This workshop is based on the 1BitSy STM32F405 development board and the Black Magic Probe Mini V2 JTAG/SWD debugger with built in GDB server. Both were designed to work transparent with common open source tools and minimal abstractions, making the understanding of what is happening in the system simple. When things go south you don’t want to spend hours peeling back the layers of abstraction. This workshop is based on, and expands on, the tools and techniques introduced in the “Using Black Magic to make embedded programming fun” talk. (Saturday 3:30pm-5pm) The talk
Oregon Convention Center, 777 NE Martin Luther King Jr Blvd, Portland, OR, 97232, United States.
See http://www.bsidespdx.org/workshops for details about these workshops.
Don't worry if they're sold out - there might be room for walk-ins too.
Security Bsides Portland 2016 will be Friday, October 14, with an additional day of activities and workshops on Saturday, October 15. BSidesPDX will be held at the Oregon Convention Center
BSides PDX is a gathering of the most interesting infosec minds in Portland and the Pacific Northwest! Our passion about all things security has driven attendance from other parts of the country. Our goal is to provide an open environment for the InfoSec community to engage in conversations, learn from each other and promote knowledge sharing and collaboration. The Portland and greater Northwest information security community spans a broad spectrum of participation from CISOs, Fortune 100 company security experts, small business system admins, to independent security researchers.
Cancellation policy Please cancel if you know you won't attend so others can reserve space
Please cancel if you know you won't attend so others can reserve space
http://www.bsidespdx.org/
Please enter below, the secure invite code provided to you by the event organizer in order to proceed...
(Please use a genuine email address. It will be used to validate your request)
