The most trusted source for computer security training, certification and research.

select a course
Las Vegas, NV - June 1 - 8, 2009
Global Information Assurance Certification

GIAC certs are concerned with real applications and principles, rather than vendor products and implementations.
-Rob VandenBrink

Sunday, May 31, 2009

5:00pm - 8:00pm
Welcome Reception and Registration

Monday, June 1, 2009

7:00am - 8:30am
Breakfast sponsored by SAINT Corporation
8:30am - 9:30am
Keynote: Penetration Testing Trends
Alberto Soliño, Core Security
9:30am -10:30am
Expert Presentation: The Future of Metasploit
HD Moore, Metasploit
10:30am -10:45am
Break
10:45am - 11:20am
Panel: Doing More With Less: Techniques for Automation and Getting More Bang for your Limited Pen Test Buck
Toby Kohlenberg, Intel; Ron Dilley, Time Warner
11:20am - 12:15pm
Expert Talk: VoIP Penetration Testing
Jason Ostrom, Sipera Systems
12:15pm - 1:15pm
Lunch
1:15pm - 2:00pm
Expert Briefing: Advanced Pen Test Techniques
Valsmith
2:00pm - 2:50pm
Expert Presentation: Late-Breaking Web App Pen Test Techniques
Robert "Rsnake" Hanson, ha.ckers.org
2:50pm - 3:05pm
Break
3:05pm - 4:00pm
Expert Presentation: Integrating New Wireless Attack Tools into Your Pen Test Regimen
Josh Wright, SANS/InGuardians
4:00pm - 5:00pm
Vendor Panel: Commercial Pen Test Tool Features and Evolution
Alberto Soliño, Core Security
Billy Austin, SAINT
5:00pm - 8:00pm
Vendor Hospitality Suites: Core Security
8:00pm - 10:00pm
PaulDotCom Security Weekly: Live!
PaulDotCom Security Weekly is a weekly podcast that discusses the latest security news, vulnerabilities, and research in a lighthearted, fun, and entertaining environment. Come watch the show live as the entire crew performs for the first time on stage together! You can participate in show topics, ask questions, and win free stuff! Visit our web site http://pauldotcom.com for more information.
Paul Asadoorian, Larry Pesce, John Strand, Mick Douglas, & Carlos dark0perator Perez

Tuesday, June 2, 2009

8:30am - 9:30am
Keynote: Zen and the Art of Internal Penetration Testing
Paul Asadoorian, Pauldotcom Enterprises
9:30am - 10:30am
Panel: Biggest Mistakes of Your Pen Test Career
John Strand, Ed Skoudis, Paul Asadoorian, Other Panelists
10:30am - 10:45am
Break
10:45am - 11:20am
Taking Recon to the Next Level
Larry Pesce, Pauldotcom Enterprises
11:20am - 12:15pm
Custom Penetration Testing: Compromising a Vulnerability through Discovery and Custom Exploitation
Stephen Sims
12:15pm - 1:30pm
Lunch & Learn sponsored by Core Security
1:30pm - 2:30 pm
Expert Briefing: Comprehensive Web App Vulnerability Analysis with Grendel-scan
David Byrne, Trustwave
Eric Duprey, Dish Network
2:30pm - 2:45pm
Break
2:45pm - 3:35pm
Expert Talk: Web Application Vulnerability Analysis
Jeremiah Grossman, WhiteHat
3:35pm - 4:15pm
Expert Talk: Real-world Code Review — a thorough and objective review of the benefits, shortcomings, and trade-offs of static code analysis tools, black box application scanners, and expert analysis.
Vinnie Liu, Stach & Liu
4:15pm - 5:15pm
Vendor Panel: Commercial Web App Vulnerability Assessment Tool Features and Evolution