We have our regularly scheduled DC407 in-person meeting tomorrow August 26 at 7PM at Colo Solutions!!!
Location: Colo Solutions 100 W. Lucerne Circle, Suite 101 Orlando, FL 32801 Google Map. Free parking and open wifi.
Talk: OWASP TOP 10 by Dustin
Abstract: Review the famous OWASP Top 10 (2021) list, discuss the upcoming changes, OWASP and application security.
We will meet on the 1st floor. The building locks after hours, if you happen to arrive late just send a message in discord #general and someone will open the door.
Please make sure to get on discord (if not already): DC407 Discord !
DC407 Online, Thursday August 14, 2025 at 8PM Eastern time on zoom.
Talk: What I Learned From Building A Tabletop Security Exercise! with Dwayne McDaniel
Bio: Dwayne has been working as a Developer Advocate since 2014 and has been involved in tech communities since 2005. His entire mission is to “help people figure stuff out.” He loves sharing his knowledge, and he has done so by giving talks at hundreds of events worldwide. He has been fortunate enough to speak at institutions like MIT and Stanford and internationally in Paris and Iceland. Dwayne currently lives in Chicago. Outside of tech, he loves karaoke, live music, and crochet. On LinkedIn at https://www.linkedin.com/in/dwaynemcdaniel/
Abstract: At DEFCON 32, my team taught over 160 people the limitations of manual code review to solve secrets sprawl. We did not use new tech. We did not use computers or anything that needed electricity. We used paper cards. What we learned along the way was eye-opening and changed the way I think about security.
This talk is a quick recap of the surprising findings we unexpectedly gathered and the power of getting away from the keyboard. I will reveal my new theory on driving better conversations across teams and roles to actually try and improve security, and not just show how clever we are.
We have our regularly scheduled DC407 in-person meeting on July 22, 2025 7PM at Serendipity Labs:
The meeting is held in the Serendipity Labs co-working space on the 3rd floor.
If you have any issues finding the meeting location post in our Discord #general channel and one of us will help you out.
Welcome our speaker John “Panda” Aff!!
Talk: Signal for All
Abstract: Meshtastic and LoRa allow you to send secure messages long range with no traditional infrastructure. I’ll show how it works, what gear you need, and how CommsForAll.com and JaxMesh.com are helping build a network across communities. Join the mesh and help us connect the world 🌎 ❤️.
Bio: John “Panda” Aff is a member of DC904, JAX2600, OWASP, ISC2, and InfraGard, John’s a fixture in the InfoSec community, volunteering for HackRedCon, HackSpaceCon, DCFurs, BSidesJAX/LV, and contributing to #badgelife as a maker. He’s part of Fox Box Dialing Services, DEF CON TeleChallenge Champions (2022/2023) and PhreakMe runner-up (2024). With certifications including CISSP, OSCP, OSWP, OSDA, Security+, CCNP Security, and ITIL, he excels in enterprise network security; offensive, defensive and physical. After leading the security program at an S&P500 company, he’s now focused on RedSeer’s growing list of clients. In his downtime, John roasts coffee, cycles, fishes. He loves boats, radio communication, space and satellites and runs the Meshtastic company CommsForAll.com and Jaxmesh.com.
Parking: Free parking is available on the street, there is paid parking in the parking lot behind the City Hall building, which costs approximately $14 for the meeting visit.
DC407 Online, Thursday June 12, 2025 at 8PM Eastern time on zoom.
Talk: From Noise to Knowledge: Demystifying RF Signals with Ty Purcell !!!
Abstract: The expansion of wireless technologies has introduced a diverse range of hardware, protocols, and radio frequencies. When a large mix of acronyms and names like LoRa, BTLE, ZigBee, RFID and Wi-Fi are thrown-in, one can easily get confused and overwhelmed.
This presentation offers a comprehensive introduction to the RF spectrum for those new to wireless security that will also provide value for experienced practitioners. By taking a broad, big-picture approach, we’ll begin by exploring the electromagnetic spectrum, covering familiar technologies and concepts like infrared, visible light, and x-rays, before narrowing our focus to the portion dedicated to radio frequencies. Key concepts such as wavelength, frequency, and modulation will be explained along the way.
We’ll then delve into the specific wireless frequencies and protocols security professionals are likely to encounter, providing practical examples and tools for detecting, analyzing, and testing these devices and signals.
We have our regularly scheduled DC407 in-person meeting on next Tuesday, May 27, 2025 at Colo Solutions at 7PM:
Location: Colo Solutions 100 W. Lucerne Circle, Suite 101 Orlando, FL 32801 Google Map.
Free parking and open wifi.
Talk: “Forget All Previous Instructions:” A Dive Into System Prompts by FedX !!
We will meet on the 1st floor. The building locks after hours, if you happen to arrive late just send a message in discord #general and someone will open the door.
Please make sure to get on discord (if not already): DC407 Discord !
DC407 Online, Thursday May 8, 2025 at 8PM Eastern time on zoom.
Talk: Hacking the Creative Process to Bring Ideas to Life with Jason Blanchard !!
Got ideas but not sure how to bring them to life? In this interactive talk, we’ll explore how brainstorming becomes ideas, how ideas become reality, and how those realities end up in the hands of others. Be the next Flipper Zero, Backdoors & Breaches, open source tool, or badge-life maker. Life is about creating, so let’s dive into the practical steps you can follow to bring that idea that’s dying to be born into the world. It won’t be easy, but it’s always better to say, “Look at what I’ve created,” than, “There are so many things I want to make.”
Bio: Jason Blanchard makes things with people, and lots of people like those things. He’s failed his way to success time and again over the years. Currently, he’s the Content and Community Director at Black Hills Information Security. Jason is the co-creator of the incident response card game Backdoors & Breaches and numerous educational projects in the cybersecurity industry. He also produces the new comic book series from REKCAH Comics (a Black Hills Infosec company) called *The Future Is **.
Throughout time, folks looking for love (or lust) have found & formed relationships with one another by leveraging community networks – relatives, clergy, nosy neighbors, even matchmakers. For the first time in history, relationships are no longer mediated by other people, but rather by technology. From dating websites and social media to AI partners and connected sex toys, technology represents an evolutionary factor we have not seen since the agricultural revolution… and for the most part, tech companies are entirely unprepared. Attendees will learn how to critically examine both their use of technologies AND their relationship to these tools. They will be able to articulate a framework for digital health and apply its principles to relationships both online and off. We will critically examine surveillance culture as well as changing legal and social norms and explore the way these impact client safety across the lifespan. This presentation is relevant to anyone who uses technology to manage their personal information, cultivate and maintain their personal relationships, or to facilitate their professional work.
Bios:
Stefani Goerlich is an award-winning author, Clinical Social Worker, and Certified Sex Therapist who specializes in working with and writing about the BDSM/kink community. The founder of Bound Together Counseling and the Bound Together Foundation, Stefani is a Board-Certified Clinical Sexologist, spends way too much time on Reddit, and recently dropped out of one of the best cyber criminology programs in the country. Describing herself as “tech adjacent,” she’s learned everything she knows about information security by hanging out at the bar with hackers.
Wolf Goerlich is a cybersecurity expert who has spent the last decade charming audiences around the world with stories of what the Dracula and the Wolfman can teach us about foreign espionage, how to protect your privacy when cell phones are weaponized against their users, and what to do when your friend accidentally robs the wrong bank. If he’d known Stefani was a social worker, he never would have swiped right… but he did, and he’s been exploring the ways that technology can support mental and relational health ever since.
