*We sold out of electronic badges as of February 1st, 2018, however there are plenty of standard tickets still available below. Students email info[at]bsideskc.org for a code to get free admission. All badge holders receive lunch, conference t-shirt and swag bag.
No attendees at BSides, everyone participates!
This ticket is for the the awesome people wanting to support the BsidesKC community.
ONLY ONE PER PERSON. Workshops run concurrently. Visit https://www.bsideskc.org/workshops/ for detailed info on all workshops. 8:30-11:30a
8:30-11:30a: Fast-paced, organized introduction to the simple, but powerful art of building logic with YARA to detect and analyze files. YARA is the pattern matching king of analysis tools, compatible with nearly every platform out there, open source and built in C. If it's not in your trusted tool set for incidents and intelligence work - it should be. In this 3-hour workshop, students are introduced to YARA and then quickly learn to craft efficient, effective and useful rules. This is a how-to rule building class that fits nicely with the hands-on usage workshop taught in the afternoon.
8:30-11:30a: All proceeds go towards CTF prizes. Bro is a powerful network analysis framework that allows for customized development via an internal scripting language that allows the creation of highly powerful detections via metadata extraction events. With the release Double Pulsar by the Shadow Brokers malicious software ranging from EternalBlue, WannaCry, to the more recent (Not)Peyta cyberattacks have necessitated a deeper understanding of the SMB protocol found in virtually every network in the world. Given the extreme complexity of SMB it is very easy for C&C activity to go undetected due to the shear signal-to-noise ratio present in the protocol and the high volume of activity that it generates on a network without malicious activity being present. For this PacketSled extended the SMB analyzer in Bro to facilitate the detection of, what would generally be, anomalous behavior of the protocol itself, bringing the noise floor down and allowing for the detection of anomalous activity.
ONLY ONE PER PERSON. Workshops run concurrently. Visit https://www.bsideskc.org/workshops/ for detailed info on all workshops. 1:30-4:30p
1:30-4:30p: A SIMULATED crisis is unfolding on a national scale. Triggered by a yet-unknown adversary, what started as a technical issue has become a society-wide impact, affecting millions of citizens, several industries, and spanning government jurisdictions. Who is in charge, how do they cooperate with others, and how do they make decisions? BSidesKC and I Am The Cavalry are teaming up to bring policy makers together with security researchers and others, to find out how our nation would respond to a wide-scale “Cyber” crisis.
1:30-5:30p: In this four-hour class students will learn about the components that make up modern smart city infrastructure. A little history will be shared to expose some of the current weaknesses that exist in smart city design as well as the associated risks. Students will be introduced to the basics of Industrial Control Systems (ICS) and the components that they are likely to encounter while assessing or defending control systems in a smart city or corporate building context. Common vulnerabilities in smart cities and buildings will be covered. Students will have hands on labs in which they will learn to identify ICS components on a network and have the opportunity to analyze attack data targeting ICS controllers.
1:30-4:30p: All proceeds go towards CTF prizes. In this workshop you will be introduced to bug bounties, a command-line xss scanner, and the ease of finding cross-site scripting bugs in websites.
1:30-4:30p: A gentle introduction to the simple, but powerful art of using YARA to find patterns in data. YARA is the pattern matching king of analysis tools, compatible with nearly every platform out there, open source and built in C. If it's not in your trusted tool set for incidents and intelligence work - it should be. In this 3-hour workshop, students are introduced to YARA and then quickly put it into use to interrogate files and pull out the information they need. This is not a how-to rule building class but a hands-on usage workshop.
April 20-21 at the Cerner Innovations Campus
Workshops & Training on Friday April 20
Speaker & Student Tracks and Villages on Saturday April 21