Security Night 22/Sep

Dear Berlin Security Community,

TL;DR | Join the next Security Night on September 8 from 7 pm CEST at SysEleven: Boxhagener Str. 79, 10245 Berlin. Three speakers are ready to share their talks with you:

1. devsetup by Pierre Pronchery
2. Penetration Testing on AWS by Lisa Wang
3. TLS and Man in the Middle (foundational) by Akendo

➡ WHAT TO EXPECT

After months of silence, it is finally enough. We should talk about all the things happening around us. Let us meet again in-person and discuss! So we can get back to normal, hopefully…

This time, we have three great speakers on offer: Pierre about a nice tool he has developed, Lisa about her fresh Bachelor's thesis on pentesting and Akendo about the foundations of MitM with TLS. And Akendo has also joined our organization team – welcome!

A big thanks to SysEleven and especially to Kenny for providing location, food and drinks for the night. Their space for talks is great and they hosted a series of really interesting tech meetups.

➡ THE TALKS

(1) "devsetup: local development environment and security tools for any platform" by Pierre Pronchery:
The pkgsrc project is the official source for third-party software packages for the NetBSD Operating System. However, given the passion of NetBSD developers for portability, pkgsrc supports over 20 different platforms – including macOS, where it can advantageously replace Homebrew. During this presentation, we will see how pkgsrc can therefore be used easily anywhere thanks to a single script, "devsetup", and that it also offers a number of security tools.

(2) "Penetration Testing Approaches on Selected AWS Services" by Lisa Wang:
In this presentation, we discuss the results of a Bachelor's thesis about practical penetration tests that are carried out on selected AWS services. It should be illustrated which approaches of penetration tests are possible with the selected AWS services and which security measures could minimize the attack surface.

(3) "The TLS and the Man in the Middle – a brief overview and a small demonstration" by Akendo:
I recently was confronted with a fairly odd problem. To put it simple: do not trust a trustworthy certificate, and instead replace it with a trustworthy certificate upfront instead. Here's the catch, it wasn't possible to replace the actual certificate of the service. In this presentation, I want to demonstrate how odd problems require sometimes odd solutions.

➡ THE NIGHT

We are happy to invite you to our next Security Night on September 8 at SysEleven's offices: Boxhagener Str. 79, 10245 Berlin. Our agenda for the night:

7:00 pm – Welcome
7:10 pm – Pierre Pronchery
7:30 pm – Lisa Wang
7:50 pm – Akendo
8:10 pm – Q&A
9:00 pm – Closing

Attendance is free. Emergency phone number, in case of any problems: +4917634326568. Please register at Meetup, so we can plan accordingly: https://meetup.com/berlin-internet-security-group/events/287899582

See you there!

➡ CONTACT US

Berlin Security Nights are organized by Martin, Akendo and Hendrik as a contribution to the scene. We like bringing great people together. You can find us offline at our nights or online on Slack:
https://join.slack.com/t/berlin-infosec/shared_invite/enQtNTY3ODU0OTU5NjcwLTAzMmZiNDQxNDk0NzE4NGJjOTE0ODJiOWRkMGY2Y2QwZTUxYzgzYTVlMGQ3YTllNjQ0YjFiNzVlYjZiMWU2MWY

PS: We are always looking for interesting talks and projects. If you have a talk proposal, an interesting project or something you would love to share with the community, please write us an e-mail or reach out on Slack.