Enrich your conference experience!

Evening talks given by our faculty and selected subject matter experts help you broaden your knowledge, get the most for your training dollar, and hear from the voices that matter in computer security.

SANS @Night

Incorporating Advanced MitM Attacks in Your Penetration Testing Regimen
- Bryce Galbraith
- Monday, November 17 * 7:00pm - 8:00pm

"All your layer are belong to us!"

What else can be done when traditional attack vectors like remote exploits and weak passwords fail, start the report? No way! MitM attacks can open up systems that might otherwise be impregnable: systems with strong passwords, that are fully patched, that are protected by ACLs and employ other best practices. Inconceivable, right!? This presentation will cover how you can crack these tough nuts on your next penetration test by influencing layers 2-7 of the OSI Model. Bryce will discuss the tools and techniques needed to launch a wide variety of MitM-based attacks that leverage common scenarios found in most organizations today.

• Credential sniffing
• VoIP interception
• Command injection to bypass strong authentication (e.g. one-time passwords, DNA samples? Doesn't matter).
• Crypto attacks on SSL, SSH and even intercepting keystrokes from RDP sessions.
• Downgrade attacks on common authentication protocols (e.g. Windows network authentication)
• Web traffic manipulation and malicious code injection from trusted sites
• Side-channel attacks on web applications
• Strategic DoS attacks (e.g. syslog suppression, AAA bypass)
• Advanced wireless network attacks including a unique, completely mobile, wireless attack rig complete with Internet access!

Even if you don't plan to incorporate these attacks into your own testing regime you need to be aware of what attackers can do to you while you are using the Net for fun and profit!

SALSA: Scalable & Agile Lifecycle Security for Applications
- Jonathan Ham
- Tuesday, November 18 * 7:00pm - 8:00pm

"Help! Our development team is trapped in an endless cycle of death march application development. Our security team is trapped in an endless mode of crisis management. How can we break out of these traps, and start building secure applications in a sustainable way?"

SALSA is designed to be compatible with your existing development methodology, so that you don't have to fight the "methodology fight" to make a difference for your team. You don't need to be in charge, you don't need to change everything at once. If you're a developer on a team, you can begin to make a difference. Learn about the SALSA approach to building secure applications, and help spread the word. SALSA is free, and can be implemented with a variety of tools, including open source free tools as well as some very fine commercial tools. The SALSA approach isn't a crusade, it is a set of practical recommendations that will help your team.

Web Attack Tools for Fun and Profit
- Kevin Johnson
- Wednesday, November 19 * 7:00pm - 8:00pm

In this presentation, Kevin will be presenting a series of open source tools that are useful during web penetration tests. The three tools being covered are Samurai, Yokoso! and Laudanum. Samurai, the web testing framework, is a LiveCD environment that focuses on web penetration testing. Yokoso! is an infrastructure fingerprinting tool written in Javascript. It is used within XSS attacks. Laudanum is an injectable collection of scripts used to perform further testing after finding a SQL injection flaw.

Catching the bad guys! Blue Team Tactics to Detect and Deter Cyber Threats
- Mike Poor
- Thursday, November 20 * 7:00pm - 8:00pm

In this one hour evening presentation we will discuss many of the current threats and simple ways to mitigate the risk. Many courses and talks have been dedicated to Red Teams, penetration testing or hacking. Few have touched on the subject of Blue Teams. We need to create the next generation defenders.