DC407 Online

Category: Meetings

  • April 2011 Meeting

    We will be holding DC407 this month out at FAMiLAb on Friday, April 29th at 7pm. For this meeting we actually have an agenda, as the Defcon Groups coordinator has asked us to provide some feedback. Please let me know if you’ll be able (or unable) to make it next Friday so I can gauge the interest, and accommodate any scheduling issues. Also, if there’s something awesome you want to do for next Friday, hit me up. I know Sturts and I were talking about setting up a super-extended version of the vulnerable VM lab and holding a tournament.

    Gate code is, as usual, available on request. My Google voice number is around here somewhere if you need to contact someone to let you in.

    Thanks,
    AK

  • February 18th, 2011 Meeting

    Plan is to play with some Arduino projects with corq and soak up some buffer exploits presented by g3k. Maybe get into the Shmoocon Ghost in the Shellcode stuff if we have time.

    When: 7pm Friday, February 18th
    Where: Familab (Unit 108)

    Feel free to call my Google Voice at 407-536-8705 if you have trouble getting in the gate.

    Please RSVP on Meetup here:
    http://www.meetup.com/Orlando-Nerds-and-Geeks/events/15602824/

  • December 17th, 2010 Meeting

    The venue yet to be confirmed, but unless otherwise noted we’ll be meeting at Cloudspace HQ again. If you have a talk or something you want to learn about drop a comment below or email me.

    Place:
    Cloudspace HQ
    3403 Technological Ave Suite 2 Orlando, FL 32817

    Time: 7pm

    Topic: TBD, as usual. Failing that, intelligent discussion RE recent events will be enjoyed. 😉

    Please RSVP on Meetup here:
    http://www.meetup.com/Orlando-Nerds-and-Geeks/calendar/14970102

  • August 27th Venue Change

    The normal venue for DC407 has changed. We have gotten into a very nice office space. I haven’t seen pictures, but I’m told it’s nice.

    When: 7pm Friday, August 27th
    Where: 3403 Technological Avenue, Orlando, FL Suite #2 (with the big swooshie CloudSpace logo)

    http://maps.google.com/maps?f=q&source=s_q&hl=en&geocode=&q=3403+Technological+Avenue,+Orlando,+FL&sll=37.0625,-95.677068&sspn=29.634084,56.513672&ie=UTF8&hq=&hnear=3403+Technological+Ave,+Orlando,+Orange,+Florida+32817&t=h&z=16

  • August 27th, 2010 Meeting

    We’re having our post-con recap and planning meeting. Undoubtedly much fun to be had, and great folks to discuss related subject matter with. Also, three of our regular attendees are celebrating their dates of birth.

    When: 7pm Friday, August 27th
    Where: Familab (Unit 108)

    Feel free to call my Google Voice at 407-536-8705 if you have trouble getting in the gate.

    If you want to RSVP, there is a MeetUp event for this particular meeting posted at: http://www.meetup.com/Orlando-Nerds-and-Geeks/calendar/14350486/

  • Metasploit in March

    Sorry for taking so long to get this posted on here.

    As I’ve promised since the last meeting, I’m going to give a demo/talk about Metasploit. I’m not a pro, but I feel comfortable enough to work in the shell.

    A lot of people keep asking me “why an exploit platform? Why not just exploit things?” One thing I learned from the forensics work I did for the sheriff’s office is that you need to have something that you can legitimately show your work. If you want to be a legitimate penetration tester and get clients and do work, you’ll need to be able to go back and say “Ok, this is what I did, and this is how it happened” in order to provide the customer with  real value and understanding. Metasploit isn’t commercial software, but it will get you used to a certain work flow. So this is why I Metasploit.

    What is Metasploit? Metasploit is a exploitation framework. It comes with pre-canned exploits, and an awesome environment in which you can write your own exploits and modules. While I’m not to the point where I’m discovering my own 0days and knowing how to exploit them, it’s there and something to look at. You can download Metasploit for free from: http://metasploit.com If you want to read up on how things work in MSF, a good course from the AMAZING folks over at Offensive Security (the guys that made Backtrack) is: http://www.offensive-security.com/metasploit-unleashed/ I highly recommend it.

    As for the demo, if you would like to participate, I am bringing a VMWare server with a bunch of Windows XP installs so that the group can mess with MSF and vulnerable boxes. What I recommend you bring is a laptop with Backtrack 4 installed and updated. If you don’t have a full install of BT4, you can do a persistent install on a USB key. The USB key will get you more mileage than a livecd in my opinion. You can find Backtrack 4 at: http://backtrack-linux.org That’s it so far. If you have any questions, you can email me at g3k@disillusion.us, or you can reply here. I’ll be posting my slides (if any) after the demo.

  • DC407 – First Meeting

    Let’s get a meeting together for February 2010. Feel free to suggest venues, dates and times. If you’re in the Orlando area and even remotely interested, drop me a PM or post here.

    I’ve gone ahead and emailed the dcgroups admins to get our group reactivated, and begun work on the DC407 site. I have email and calendars set up and I’m working on getting the actual site set up. If you’d like a DC407 email/apps account just let me know. We have 50 to hand out with the free version of Google Apps.

    I’ll start PMing, emailing and otherwise bothering the people I know here in town who might be interested. DC407 has been inactive since 2006, let’s make sure that changes in 2010.

    As far as time and place, I’m near downtown Orlando so Stardust, Red Light Red Light, as well as Blue Jacket Park would be close by. For times, I’m a working stiff, so it’d have to be after 5:30pm on weekdays, but my Saturdays are pretty open. I’d like to avoid conflicts with the other user groups (i.e. 2600, OPUG, ORUG, CocoaHeads, etc.) if possible.

    https://forum.defcon.org/showthread.php?t=11049