Aaron Riley

This presentation talks about logging and monitoring. This subject is backed with real world scenarios and technical details. We will discuss how to set up a network logging program as well as how to parse the logs. After discussing how to parse the logs we will need to monitor for any unusual or malicious activity. We will discuss how to set up alerts for any unusual criteria we have set. By doing this you will easily be more capable of finding the bad actor/actors within your network.

The theme of the talk is to show how to be effective doing the basics within cyber security. We will cover the NIST framework as well as the OWASP top ten. The audience should walk away with a better understanding of what they can do for a cyber security program within any size business. This presentation is also for people who already understand the basics of cyber security by giving them confirmation they are covering the basics within their established programs. The goal of this session is to give a better insight of what the basics of cyber security are and how they can be accomplished.

In this presentation we will look at what IoT is and how these devices can be used for malicious intent. We will talk about how the IoT devices form together to make botnets and how they are controlled. We will discuss the current botnet wars and how researchers see the future of this technology. Understanding the IoT threat landscape is imperative to being able to fight against it. We will show you tips on how to secure your IoT devices and not get caught up in a botnet.

Botnets are becoming more sophisticated in their techniques to evade network and endpoint detection and their capabilities to harvest sensitive information from an infected target. This in depth analysis will show how the botnets are formed and their tactics to propagate, as well as their information stealing capabilities. We will go through an example of the Geodo/Emotet botnet malware to visually explain these concepts. Mitigating these botnet infection attempts and techniques will be paramount to limiting your attack surface. The evolution of these botnets leave older mitigation technique obsolete while newer mitigation techniques are struggling to keep up. This discussion will show how to intertwine education and technology together to harden your network and defend against these attacks.