addressalign-toparrow-leftarrow-rightbackbellblockcalendarcameraccwcheckchevron-downchevron-leftchevron-rightchevron-small-downchevron-small-leftchevron-small-rightchevron-small-upchevron-upcircle-with-checkcircle-with-crosscircle-with-pluscontroller-playcrossdots-three-verticaleditemptyheartexporteye-with-lineeyefacebookfolderfullheartglobegmailgooglegroupshelp-with-circleimageimagesinstagramFill 1light-bulblinklocation-pinm-swarmSearchmailmessagesminusmoremuplabelShape 3 + Rectangle 1ShapeoutlookpersonJoin Group on CardStartprice-ribbonprintShapeShapeShapeShapeImported LayersImported LayersImported Layersshieldstartickettrashtriangle-downtriangle-uptwitteruserwarningyahoo

Attacking Drupal with Greg Foss

6:00 - 6:30 Food, drink, and networking
6:30 - 7:15 Chapter business and group discussion
7:15 - 8:00 Featured presentation

Featured Presentation: Attacking Drupal
Drupal is a very popular content management system that has been widely adopted by government agencies, major businesses, social networks, and more. Understanding how Drupal works and properly securing these applications is of the utmost importance. This talk focuses on the penetration tester's perspective of Drupal and dives into streamlining the assessment and remediation of commonly observed application and configuration flaws by way of custom exploit code and security checklists, all of which will be publicly released following the presentation.

Speaker Bio
Greg Foss is a Senior Security Research Engineer at LogRhythm Labs where he focuses on developing defensive strategies, tools and methodologies to counteract advanced attack scenarios. His background is in Security Operations with an emphasis in Penetration Testing and Web Application Security. Greg holds multiple industry certifications including the OSCP, GPEN, GWAPT, GCIH, and C|EH, among others.


Seating is limited and is prioritized for those who RSVP. Parking is available through the Whittier Neighborhood Zone. Food and drinks will be provided and there will be a networking session preceding the meeting. As always, meetings are free to attend.

Our continued thanks to Aerstone for providing the venue and the refreshments.

Join or login to comment.

  • Falcon T.

    Very informative and professional. Left me with a lot of research to do.

    2 · January 16, 2014

    • Michael S.

      Agreed. That was pretty awesome. I wish he could present for the cu hacking club!

      1 · January 16, 2014

    • Greg F.

      Thanks, glad you enjoyed the talk! As for the CU Hacking club, I'd be glad to present to those folks. Let me know some times that may work and we'll try and put something together.

      January 17, 2014

  • Mark M.

    Greg's presentation, associated videos, scripts, etc. are available on his GitHub account:

    The presentation slides (standalone) are located here:

    1 · January 16, 2014

  • Marc E.

    Sorry, can't make this meeting - darn!

    January 15, 2014

  • M S.

    For a change, I'll be there in person instead of using webex.

    1 · January 5, 2014

21 went

Our Sponsors

People in this
Meetup are also in:

Sign up

Meetup members, Log in

By clicking "Sign up" or "Sign up using Facebook", you confirm that you accept our Terms of Service & Privacy Policy