{"id":41,"date":"2010-07-23T16:22:18","date_gmt":"2010-07-23T16:22:18","guid":{"rendered":"http:\/\/www.secbarbie.com\/?p=41"},"modified":"2014-07-24T16:22:35","modified_gmt":"2014-07-24T16:22:35","slug":"security-summer-camp-part-1-the-talks","status":"publish","type":"post","link":"http:\/\/www.secbarbie.com\/?p=41","title":{"rendered":"Security Summer-Camp \u2013 Part 1: The Talks"},"content":{"rendered":"

<\/h3>\n

<\/h3>\n

<\/h3>\n

<\/h3>\n

<\/h3>\n

<\/h3>\n

<\/h3>\n

\"\"<\/a><\/span><\/h3>\n

SecBarbie\u2019s talk picks of the week:<\/h2>\n

Black Hat<\/span><\/h3>\n

Wednesday 1:45pm \u2013 3pm<\/b><\/p>\n

Augustus 1 & 2<\/i><\/b><\/p>\n

Barnaby Jack \u2013 Jackpotting Automated Teller Machines Redux!<\/p>\n

Wednesday 3:15pm \u2013 4:30pm<\/b><\/p>\n

Roman<\/i><\/b><\/p>\n

Dan Kaminsky \u2013 Black Ops Of Fundamental Defense: Web Edition<\/p>\n

Wednesday 4:45pm \u2013 6pm<\/b><\/p>\n

Augustus 5 & 6<\/i><\/b><\/p>\n

Fyodor \u2013 Mastering the Nmap Scripting Engine<\/p>\n

Milano 5 \u2013 8<\/i><\/b><\/p>\n

Alex Hutton \/ Allison Miller \u2013 Ushering in the Post-GRC World: Applied Threat Modeling<\/p>\n

Thursday 10am \u2013 11am<\/b><\/p>\n

Augustus 3 & 4<\/i><\/b><\/p>\n

Chris Hoff \u2013 Cloudinomicon: Idepotent Infrastructure, Survivable Systems & Bringing \u00a0 Sexy Back to Information Centricity<\/p>\n

Thursday 11:15am \u2013 12:30pm<\/b><\/p>\n

Roman<\/i><\/b><\/p>\n

Cesar Cerrudo \u2013 Token Kidnapping\u2019s Revenge<\/p>\n

Forum 25<\/i><\/b><\/p>\n

Lee Kushner, Mike Murray \u00a0 –\u00a0 Your Career = Your Business<\/p>\n

Milano 5 \u2013 8<\/i><\/b><\/p>\n

Tiffany Rad – The DMCA & ACTA vs. Academic & Professional Research: How Misuse \u00a0 of this Intellectual Property Legislation Chills Research, Disclosure and \u00a0 Innovation<\/p>\n

Thursday 3:15pm \u2013 4:30pm<\/b><\/p>\n

Milano 1 \u2013 4<\/i><\/b><\/p>\n

Samy Kamkar – How I met your girlfriend<\/p>\n

Wednesday also has the Cloud Security Alliance Summit <\/i><\/b>with some pretty amazing, insightful, and wicked cool folks such as:<\/p>\n

Chris Hoff \u00a0 \u2013 \u00a0 Cloudersize Keynote<\/p>\n

Josh Pennell \u00a0 \u2013 \u00a0 Hacking the Hypervisor 2010<\/p>\n

Steve Riley \u00a0 \u2013 \u00a0 Security and compliance in the Amazon cloud<\/p>\n

\"securitybsides_logo-300x300.jpg\"<\/a><\/p>\n

Security BSides \u2013 Las Vegas 2010<\/span><\/strong><\/p>\n

I can\u2019t even begin to pick the Security BSides talks (special mention to the InfoSec Mentor Panel that I\u2019ll be on Wednesday at 6pm) as I would whole-heartedly endorse all of them. Bravo to the talk selection guys! So, here is the BSides Schedule:<\/p>\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n
<\/td>\nTRACK 1<\/b> <\/p>\n

On The Keys<\/b><\/td>\n

<\/td>\n<\/td>\nTRACK 2<\/b> <\/p>\n

AFK<\/b><\/td>\n

<\/td>\n<\/tr>\n
7\/28\/2010<\/b><\/td>\n<\/td>\n<\/td>\n<\/td>\n<\/td>\n<\/td>\n<\/tr>\n
10:00 AM<\/td>\nDavid Rook<\/b><\/td>\nInjecting Simplicity not SQL<\/a><\/td>\n<\/td>\nDaniel Molina<\/b><\/td>\nTop 10 Things IT is Doing to Enable CyberCrime<\/td>\n<\/tr>\n
11:00 AM<\/td>\nRyan Linn<\/b><\/td>\nMulti-Player MetaSploit<\/td>\n<\/td>\nWill Gragido<\/b><\/td>\nThrough the rabbit hole: An Expose of Darknets and the Onion Routed Underground<\/td>\n<\/tr>\n
12:00 PM<\/td>\nChristopher E. Pogue<\/b><\/td>\nSniper Forensics<\/td>\n<\/td>\nGene Kim<\/b><\/td>\nMobilizing the PCI Resistance: Lessons Learned From Fighting Prior Wars (SOX-404)<\/td>\n<\/tr>\n
01:00 PM<\/td>\nChris Lytle,<\/b> <\/p>\n

Leigh Hollowell<\/b><\/td>\n

CCDC<\/td>\n<\/td>\nAndrew Hay,<\/b> <\/p>\n

Chris Nickerson<\/b><\/td>\n

Building Bridges –\u00a0 Forcing Hackers and Business to Hug it Out<\/td>\n<\/tr>\n
02:00 PM<\/td>\nSean-Paul Correll,<\/b> <\/p>\n

Luis Corrons<\/b><\/td>\n

Catch That Butterfly: Stopping Mariposa in its Tracks and Revealing a Growing Underground Network of Amateur Hackers<\/td>\n<\/td>\nVik Phatak<\/b><\/td>\nExploitHub: Arming the Pen Testers to Plug the Holes<\/td>\n<\/tr>\n
03:00 PM<\/td>\nDave Kennedy (Rel1K)<\/b><\/td>\nSET 0.6 release with special PHUKD Key<\/td>\n<\/td>\nPaul Judge, David Maynor<\/b><\/td>\nThe Dark side of Twitter, Measuring and Analyzing Malicious Activity on Twitter<\/td>\n<\/tr>\n
04:00 PM<\/td>\nfrank^2<\/b><\/td>\nFuck Tools, Do It yourself Jerk<\/td>\n<\/td>\nGrecs<\/b><\/td>\nInfosec Communities for Career Success: Understanding, Participating, and Cooking One Up<\/td>\n<\/tr>\n
05:00 PM<\/td>\nJabra<\/b><\/td>\n<\/td>\n<\/td>\nJoseph Sokoly<\/b><\/td>\nInfosec Young and Restless<\/td>\n<\/tr>\n
06:00 PM<\/td>\nJim MacLeod<\/b><\/td>\nStupid IP Tables Tricks<\/td>\n<\/td>\nINFOSEC Mentoring, Mentee-ing Panel<\/b><\/td>\n<\/td>\n<\/tr>\n
7\/29\/2010<\/td>\n<\/td>\n<\/td>\n<\/td>\n<\/td>\n<\/td>\n<\/tr>\n
10:00 AM<\/td>\nJimmy Shah<\/b><\/td>\nMobile Hackery<\/td>\n<\/td>\nJosh Corman, Dennis Fisher, HD Moore, Jack Daniel<\/b><\/td>\nInfoSec Speed Debates<\/td>\n<\/tr>\n
11:00 AM<\/td>\nEgyp7<\/b><\/td>\nBeyond r57<\/td>\n<\/td>\nChris Sumner<\/b><\/td>\nSocial Network Special Ops<\/td>\n<\/tr>\n
12:00 PM<\/td>\nHDM<\/b><\/td>\nFun with VxWorks<\/td>\n<\/td>\nFrank Breedijk, Ian Southam<\/b><\/td>\nThe road to hell is paved with best practices<\/td>\n<\/tr>\n
01:00 PM<\/td>\nDavi Ottenheimer<\/b><\/td>\nKeypad Bypass Hacks<\/td>\n<\/td>\nBruce Potter<\/b><\/td>\nHow to Make Network Diagrams that Don\u2019t Suck<\/td>\n<\/tr>\n
02:00 PM<\/td>\nZach Lanier<\/b><\/td>\nIt Melts In Your Hand: An Overview of Security (Failures) In Mobile Applications<\/td>\n<\/td>\nEric Smith<\/b><\/td>\nRoman Profiles : The 6 Mistakes of<\/td>\n<\/tr>\n
03:00 PM<\/td>\nRay Kelly<\/b><\/td>\nA mechanics view of SQL injection<\/td>\n<\/td>\nValSmith<\/b><\/td>\nSocial Engineering the CFP Process<\/td>\n<\/tr>\n
04:00 PM<\/td>\nMoxie Marlinspike<\/b><\/td>\nHow technology killed my heroes, and why they will never be born again<\/td>\n<\/td>\nChris Roberts<\/b><\/td>\nPlanes, Trains and Automobiles: (OK, Cars and Buses)<\/td>\n<\/tr>\n
05:00 PM<\/td>\nJason Ross<\/b><\/td>\nWho Owns the Internet? AKA: Where did all that cyberspace go?<\/td>\n<\/td>\nAndre Gironda<\/b><\/td>\nApp Assessments Reloaded<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

\"dc-18-logo-wide-300x110.png\"<\/a><\/p>\n

DefCon 18<\/b><\/p>\n

Friday 1pm \u2013 2pm<\/b><\/p>\n

Track 4<\/b><\/p>\n

Dennis Brown – How Hackers Won the Zombie Apocalypse<\/p>\n

Friday 2pm \u2013 3pm<\/b><\/p>\n

Track 3<\/b><\/p>\n

Jim Rennie, Eric Rachner – Search & Seizure & Golfballs<\/p>\n

Friday 3pm \u2013 3:30pm<\/b><\/p>\n

Track 5<\/b><\/p>\n

Righter Kunkel – Air Traffic Control Insecurity 2.0<\/p>\n

 <\/p>\n

Friday 4pm \u2013 5pm<\/b><\/p>\n

Track 4<\/b><\/p>\n

Tottenkoph – An Introduction to Virtual Graffiti<\/p>\n

Friday 5pm \u2013 6pm<\/b><\/p>\n

Track 2<\/b><\/p>\n

Sumit Siddharth – Hacking Oracle from Web Apps<\/p>\n

Friday 6pm \u2013 6:20pm<\/b><\/p>\n

Track 5<\/b><\/p>\n

Marisa Fagan – Be A MENTOR!<\/p>\n

Friday 9pm \u2013 ???pm<\/b><\/p>\n

Track 1<\/b><\/p>\n

Hacker Jeopardy!!!!!!!\u00a0 \u00a0 \u00a0 \u2013 Bring Booze!<\/p>\n

Saturday 10am \u2013 11am<\/b><\/p>\n

Track 2<\/b><\/p>\n

Jeremy Brown – Exploiting SCADA Systems<\/p>\n

Saturday 10am \u2013 11am<\/b><\/p>\n

Track 4<\/b><\/p>\n

Chris Paget – Extreme-range RFID Tracking<\/p>\n

Saturday 11am \u2013 12pm<\/b><\/p>\n

Track 4<\/b><\/p>\n

Barnaby Jack \u2013 Jackpotting Automated Teller Machines Redux!<\/p>\n

Saturday 12pm \u2013 1pm<\/b><\/p>\n

Track 1<\/b><\/p>\n

Nicholas Percoco, Christian Papathanasiou \u2013 \u201cThis is not the Droid you\u2019re looking for..\u201d<\/p>\n

Saturday 1pm \u2013 2pm<\/b><\/p>\n

Track 1<\/b><\/p>\n

frank^2 – Trolling Reverse-Engineers with Math: Ness\u2026. It Hurts\u2026<\/p>\n

Saturday 3pm \u2013 4pm<\/b><\/p>\n

Track 2<\/b><\/p>\n

James Arlen – SCADA and ICS for Security Experts: How to avoid Cyberduchery<\/p>\n

Saturday 3pm \u2013 4pm<\/b><\/p>\n

Track 5<\/b><\/p>\n

Garry Pejski – My Life as a Spyware Developer<\/p>\n

 <\/p>\n

Saturday 4pm \u2013 5pm<\/b><\/p>\n

Track 4<\/b><\/p>\n

Jayson Street – Deceiving the Heavens to Cross the Sea: Using the 26 stratagems for Social Engineering<\/p>\n

 <\/p>\n

Saturday 5pm \u2013 6pm<\/b><\/p>\n

Track 4<\/b><\/p>\n

Leigh Honeywell, follower – Physical Computing, Virtual Security: Adding the Arduino Microcontroller Development Environment to your security toolbox<\/p>\n

Saturday 7pm \u2013 9pm<\/b><\/p>\n

Track 5<\/b><\/p>\n

DefCon Security Jam III: Now in 3D?<\/p>\n

Saturday 10pm \u2013 ??pm<\/b><\/p>\n

Track 4<\/b><\/p>\n

10,000 Cent Pyramid<\/p>\n

Sunday 10am \u2013 11am<\/b><\/p>\n

Track 4<\/b><\/p>\n

Mike Bailey – Web Services we just don\u2019t need<\/p>\n

Sunday 11am –\u00a0 12pm<\/b><\/p>\n

Track 2<\/b><\/p>\n

Valsmith, Colin Ames, Anthony Lai – Balancing the Pwn Trade Deficit<\/p>\n

Sunday 1pm –\u00a0 2pm<\/b><\/p>\n

Track 5<\/b><\/p>\n

mc.fly, rvd, vyrus, no maam – ChaosVPN for Playing CTFs<\/p>\n

Sunday 2pm –\u00a0 3pm<\/b><\/p>\n

Track 3<\/b><\/p>\n

David Smith, Samuel Petreski – A new approach to forensic methodology – !!BUSTED!! Case Studies<\/p>\n

Sunday 4pm –\u00a0 5pm<\/b><\/p>\n

Track 1<\/b><\/p>\n

The Suggmeister – Social Networking Special Ops: Extending Data Visualization Tools for Faster Pwnage<\/p>\n

 <\/p>\n

Sunday 5pm –\u00a0 6pm<\/b><\/p>\n

Track 1<\/b><\/p>\n

Justin Morehouse, Tony Flick – Getting Social with the Smart Grid<\/p>\n

Sunday 6pm<\/b><\/p>\n

CLOSING CEREMONIES!!!!!<\/b><\/p>\n

Please reclaim all lost livers here!<\/i><\/b><\/p>\n

 <\/p>\n

 <\/p>\n

If you are NOT going to be in the melt-your-face-off land of Las Vegas next week, you can follow all of the action and some of the parties via my live-conference feed on twitter.<\/p>\n","protected":false},"excerpt":{"rendered":"

SecBarbie\u2019s talk picks of the week: Black Hat Wednesday 1:45pm \u2013 3pm Augustus 1 & 2 Barnaby Jack \u2013…<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_mi_skip_tracking":false},"categories":[16],"tags":[2,17,3,11],"_links":{"self":[{"href":"http:\/\/www.secbarbie.com\/index.php?rest_route=\/wp\/v2\/posts\/41"}],"collection":[{"href":"http:\/\/www.secbarbie.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/www.secbarbie.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/www.secbarbie.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"http:\/\/www.secbarbie.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=41"}],"version-history":[{"count":2,"href":"http:\/\/www.secbarbie.com\/index.php?rest_route=\/wp\/v2\/posts\/41\/revisions"}],"predecessor-version":[{"id":43,"href":"http:\/\/www.secbarbie.com\/index.php?rest_route=\/wp\/v2\/posts\/41\/revisions\/43"}],"wp:attachment":[{"href":"http:\/\/www.secbarbie.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=41"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/www.secbarbie.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=41"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/www.secbarbie.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=41"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}