—< NORTHEAST OHIO INFORMATION SECURITY FORUM MEETING
—< 6:30 PM – 8:00 PM
—< Pizza and social start 6:00 PM
—< Location: OEC at 4205 Highlander Pkwy Richfield, OH 44286
—< Open to everyone and free as always
The Northeast Ohio Information Security Forum will hold our monthly meeting at the above date and time.
Agenda:
Talk:
A Brief on Assassin
by: Nick Moore
Assassin is an internal Palo Alto Networks tool that queries public data sources for a given domain and pulls back a great deal of information about the organization’s security posture. At no point does it actually touch any resources owned by the target organization. Information gathered includes:
- Pivot domains discovered via IP redirects
- Public IPs advertised
- QA/Dev/Test systems exposed to the Internet
- Leaked API keys
- insecure encryption algorithms
- System vulnerabilities
- Systems that would benefit form application ID hardening
The approach is one that an attacker would almost certainly take as a first step for determining possible attack vectors, but is also used by potential business partners, customers and cybersecurity insurance companies. The results are discussed live with customers and often yield a number of quick wins for the organization to dramatically improve their security posture.
Nick has been in Infosec since 1998 and has worked for McAfee, Nokia, Cisco, Sourcefire (and Cisco again) and Palo Alto Networks. He has extensive experience with threats, malware and SOC methodology. He has spoken at ISSA, CactusCon and numerous local security events. He has been a judge for the College Cyber Defense Competition for 5 years and has a keen interest in helping early in career individuals.
He loves cooking and bicycling when not at work; these hobbies have not balanced themselves out as well as he would hope.
Lighting Round Talks
- TBA
If you are interested in speaking send an email to board@neoisf.org and we can help you write your talk.
Don’t forget to come early, starting at 6:00 PM, for food and soda.
Another great meeting from NEO Info Sec Forum – we hope to see you there!
– NEOISF Board –