June's SecKC Meeting
WHEN: Tuesday, June 14, 2016 from 6:00 PM to 9:30 PM (CST)
WHERE: Kanza Hall - 7300 W 119th St. Overland Park, KS 66213
Java Deserialization and Other Bad Things [Nate Kettlewell]
The Java deserialization vulnerability was discovered quite awhile ago, and met with little fanfare. In this talk we will illustrate a few ways the vulnerability can be identified and exploited. Additionally, we will show what determined attackers do when they compromise a linux box and why it pays to stop and have a look around.
CIRT olympiKCs :: Community Incident Response Training
Do not forget, BRING A LAPTOP (with the tools you might need)tomorrow if you plan on participating in CIRT OlympiKCs.
You can pre-download the material now at http://bit.ly/OSECKC2016. This will download 1 ZIPFILE that has all three Scenarios inside. You should do this now, in case internet ends up being an issue at Kanza.
Are you interested in getting into Incident Response, or do you think that you are already an IR Ninja? SecKC continues pushing the bounds by offering this free, exciting new form of hands-on training. Three 'Real-Life' incident scenarios will be presented, and groups will have 15 minutes per scenario to identify the who/what/when/where/how details. Afterwords, the groups that made progress will take the stage and show HOW the attacked the problem, TOOLS they used, and RESULTS they got. You will walk away knowing how to better use tools you have, identify new tools, and learn from others how THEY attempted to solve the same problem you were working on!