Network Forensics: Seek & Pwn

This is a past event

13 people went

Location image of event venue

Details

PASCAL Hackerspace is proud to announce a new presentation series in which an experienced security researcher, Malcolm, will be guiding us through the intricacies of network forensics!

**Network Forensics Seek and Pwn: capture, investigate, analyze!**

The class will begin with a basic overview of what networks are; from conversations and snail mail to signal processing and radio operations (including ham radio!), ultimately leading into computer networks. We will review each aspect that comprises a network (paying special attention to protocols), how they function and eventually moving on to how they can be exploited! Each week the focus will shift to suit the attendees needs.

For the second edition of Network Pwnage, we will be diving into Layer
2: ARP, RARP, GARP, VLAN tags and how to abuse them, cam tables, ARP
flooding, and how to turn your local switch into a hub for better
sniffing opportunities.

As usual, there will be a short (30-40 minute) presentation of
material and then a hands on lab/experimentation time to put our new
skills to use. Attendees are encouraged to bring a laptop to play
along, and to have a VM with Linux (Kali is probably best, but choose your flavor!) or Mac OS as it is generally easier to work with layer 2 on these platforms.

(I'm going to have to play around a bit to find the right tool set for
this one, as https://www.monkey.org/~dugsong/dsniff/ is pretty old,
and there are several people who claim to have taken over the
project...)
--Malcolm

Malcolm is a threat researcher with a major networking and security company, and has been doing networking for way too long. He wants to help other hackers learn the wonderful and weird world of packets, and all the terrible things you can do with them.