Infosec 101

Abstract

Do terms like XSS, SQLi, RCE, Buffer Overflow, Rootkit, Trojan, Phishing, DDoS, Malware, Virus, or just the word Hacker leave you confused? We all had to start somewhere and this is the training for you, the beginner. Dan and Kevin are here to help you into the world of information security. This will be a light hearted, fun and interactive session.

We'll talk through what these terms mean, and try to answer questions as we go. There'll be live examples of the basics, and an opportunity to try these out in a lab (so bring along a laptop). The goal of this session is to come away with some usable knowledge, and an entry level understanding of the information security world.

Topics

• What is Hacking? (History, what's legal, ethics)
• Hacking in popular culture versus reality
• Getting started
• Understanding of attacks
• Performing your first attack
• Tools of the trade
• How to carry on beyond this session
• And more…

As an attendee you will need to have a laptop capable of running 2 Virtual Box VM's that will be supplied.

Presenters

Dan works as a Technical Sales Specialist at Lateral Security and also runs the Christchurch branch of Information Security Interest Group (ISIG). Formerly a sysadmin in a world of web developers, he's built, managed, maintained, fixed, and tested a good number of websites.

Kevin occasionally helps Dan run the the Christchurch branch of ISIG. He has been programming for a living since 1986 (yes, longer than most of you have been alive). Now he is the founder and principal consultant at Katipo Information Security.

Required files

• infosec101.pdf
• Kali-Linux-2016.2-vbox-i686.ova 4.08 GB shasum256 c298d579­4da9cd55­a4890b38­27a7f2d0­ef7b991e­7dce21ab­3dddb862­4f52cdd1
• metasploitable-vb.ova 905.9 MB shasum256 3826ff2e­12102850­86699f1e­aa6eaf29­f2cf6e28­4a80b234­232acabc­44234d2b