SecTalks TWB0x35 - An introduction to running your own honeypot

When:
5:45 for 6pm start (QLD time).

This months topic: An introduction to running your own honeypot
Our public networks are probed for attack vectors every day. These probes and attacks can be identified and measured to build threat intelligence that we can use to identify compromised hosts. Even our private networks are often more open than we would like with WiFi often provided with a convenience first and security second principal. While Internet honeypots give a view of attackers and malware, local network honeypots can give a critical indication of active threats inside of your network.
Everyone participating this workshop will get hands on experience with the following:
1. Running a Cowrie ssh honeypot
2. Using Thug as a Javascript client honeypot
3. Running Snare/Tanner web honeypot
4. Running Opencanary a low interaction honeypot

Participants need to be able to use a Linux terminal and ssh. (There will be help on hand if anyone is unsure)

Our Guest Speaker: Colby Prior
Colby Prior is a skilled DevSecOps engineer with extensive experience in security automation, and cloud security. With a passion for creating secure and scalable systems, he has worked with a range of organisations, from startups to large enterprises, to build and maintain secure infrastructure.
Colby has deep expertise in designing and implementing security controls within a DevOps environment, integrating security testing into the software development lifecycle, and automating security tasks.
Colby is dedicated to promoting secure and efficient DevSecOps practices, and he is committed to helping organisations adopt secure methodologies to improve their security posture.

Who is it for:
Anyone with an interest in Security, regardless of experience. More info on the format can be found on the SecTalks website https://sectalks.org

Where:
This month we will be hybrid, both virtual and in person - You chose how you would like to participate!

• We will be hosting via Webex for attendees to dial in remotely
• When you RSVP you will get a link to the Webex meeting.
• You are welcome to join us from outside Toowoomba.
• We will be in person at USQ
• Room T110, University Southern Queensland, 30-32 Baker St, Darling Heights QLD 4350.
• Best parking at USQ rec center, please observe all parking restrictions.
• Link to Map www.sectalks.org/images/sponsors/usq_map.png

Participants will need:
Laptop / Computer if you would like to participate in the hands on part of the evening. You will need a free ssh (installed on most OS by default )

There will be a few laptops that you will be able to borrow with Kali already installed - First in first served.

Code of Conduct:
Please make yourself familiar with the Code of Conduct:
https://www.sectalks.org/coc/

Thanks to:

• USQ for providing the venue.
• Cisco for streaming and catering.
• Acumenis for helping cover the costs of running the event.
• Our guest speakers for providing great content.