Categories
Past Events

Windows privilege escalation

NatedMac will be presenting on windows privilege escalation from the CLI by finding points that allow a user to go from user to administrator level access. The presentation will be an in depth overview of how you can determine installed and missing patches, find mis-configured services and determining process information, and interacting with the network.

Presentation will be January 15th 7:00 pm @ 801 Labs
353 East 200 South Salt Lake City, UT 84111

http://www.meetup.com/theTransistor/events/219479099/

Active-Directory-Privilege-Escalation

Meetup Video – youtube

Categories
Blog Upcoming Events

DC801 Presents – Bash Scripting Basics by Hydroplane

Bash Scripting Basics by Hydroplane – An introduction to Bash scripting. We will cover some Bash fundamentals, variables and parameters, transforming input, essential external tools, flow control, some advanced stuff, and debugging/analysis. Along the way, we will look at some interesting scripts that illustrate these concepts. Hope to see you there!

 

https://www.meetup.com/801labs/events/243454471/

Categories
Upcoming Events

801Locksport Night

https://www.meetup.com/801labs/events/236901217/

 

Categories
Blog Past Events

Digital First Responder Class /w Sherri Davidoff

Join us for a 1-day Digital First Responder class! A great way to train your IT staff in fundamental incident response and digital forensic preservation, and ramp up new incident responders quickly and cost-effectively. Includes an Incident Response tabletop exercise plus three hands-on labs, in which you will create a forensic image, preserve volatile memory, and capture network traffic.
When: January 26, 8:30AM-5:30PM
Where: 801 Labs Hackerspace, 353 E 200 S, Salt Lake City, UT 84111
Instructor: Sherri Davidoff, GCFA – OR- David Harrison, GCFA
Tuition: $495 (Register by December 29 for the Early Bird $50 Discount!)

http://lmgtraining.com/collections/digital-first-responder-dfr-class/products/digital-first-responder-1-day-course-slc

Categories
Blog Past Events

Sherri Davidoff Do-It-Yourself Cellular IDS

Do-It-Yourself Cellular IDS

Hacked smartphones pose extreme risks to security. Infected smartphones can record surrounding audio, intercept text messages, capture location, and usage data, and send all that stolen data back to an attacker.  Enterprise security pros have no visibility into the cellular network, and therefore can’t do network traffic inspection or IDS, even for devices that are physically within their facilities.

At LMG, we wanted to be able to keep tabs on smartphones in our facility! For less than $300 in parts, we built a proof-of-concept Cellular Intrusion Detection System, leveraging commercial femtocells to create a 3G cellular network sniffer. Then we infected a smartphone with the Android.Stels malware and showed how Snort was able to detect and alert upon the malicious smartphone traffic. Oh, and for fun, we remotely took control of the bot and made it do our bidding.

LMG’s project demonstrates that low-cost cellular intrusion detection systems are not only possible, but they are also an inexpensive and effective way to combat mobile malware. In this talk, we’ll show you our method for capturing and analyzing cellular traffic using locally-deployed femtocells, which any security professional can build.

 

https://www.meetup.com/801labs/events/236955286/

Categories
Blog

Welcoming 801Locksport to the hackerspace.

On January 12th, 801Labs played host to the inaugural 801Locksport meeting. With around 20 participants, 801Locksport had a good first showing.

There will be a regular meeting of the 801Locksport group every second Thursday of the month at 6:30 p.m.
twitter: @801locksport
Meetup: https://www.meetup.com/801labs/events/236901217/

Categories
Past Events

Friday, June 17, 2016 “InfoSec’s Inferno: the Nine Circles of Collaborative Testing Hell” Bryce Kunz

Domenico di Michelino Dante and His Poem (1465) fresco, in the dome of the church of Santa Maria del Fiore in Florence (Florence's cathedral). Dante Alighieri is shown holding a copy of his epic poem The Divine Comedy. He is pointing to a procession of sinners being lead down to the circles of Hell on the left. Behind him are the seven terraces of Purgatory, with Adam and Eve representing Earthly Paradise on top. Above them, the sun and the moon represent Heavenly Paradise, whilst on the right is Dante's home city of Florence. The illustration of Florence is self referencial, depicting the recently completed and much celebrated cathedral dome inside which the fresco is painted.
Domenico di Michelino Dante and His Poem (1465) fresco, in the dome of the church of Santa Maria del Fiore in Florence (Florence’s cathedral).
Dante Alighieri is shown holding a copy of his epic poem The Divine Comedy. He is pointing to a procession of sinners being lead down to the circles of Hell on the left. Behind him are the seven terraces of Purgatory, with Adam and Eve representing Earthly Paradise on top. Above them, the sun and the moon represent Heavenly Paradise, whilst on the right is Dante’s home city of Florence. The illustration of Florence is self referencial, depicting the recently completed and much celebrated cathedral dome inside which the fresco is painted.

InfoSec has become a Divine Comedy with competing sub factions profiting off of the blatant failures of their peers. With IR firms delighting in AV failures and red teams plundering on IT’s complex chaos, it’s time to put our differences aside and “hug it out” through collaborative testing exercises specifically designed to increase the cost of exploiting information systems by improving every teams ability to detect and prevent intrusions.

This talk covers the latest techniques for organizing collaborative testing engagements, as well as my detailed nine circles of collaborative testing methodology specifically designed to engage all teams throughout the testing process to most effectively improve each team’s unique skill sets. I will walk you through the various testing methodologies we have performed, highlighting the pitfalls that where discovered with each evolution to help you better understand why our current methodology will avoid many of these shortcomings and help you most effective improve each team’s skill sets.

When June 17th 6:30
801 Labs
353 E 200 S, Salt Lake City, UT (edit map)
http://www.meetup.com/801labs/events/230563062/

Categories
Past Events

Brady Bloxham – Red Team Tactics

Brady Bloxham – Red Team Tactics
Brady Bloxham – Red Team Tactics You Tube
Who: DC801
What: Oct Meeting
When: Friday Oct 9th, 2015 | 19:00
Where: 801 Labs Hacker Space.
353 East 200 South Suite #B
Salt Lake City, UT 84111

Categories
Past Events

July Meeting: Why Risk MGMT is all F’d up

Today we will be presenting “Why Risk MGMT is all F’d up” and “How to Measure Shit” by the notorious Alex Hutton

July Meeting: Why Risk MGMT is all F’d up – YouTube

Categories
Past Events

June Meeting: POS Systems

This month’s presentation will be on Point of Sale systems by Pope. He will be bringing in several different types of POS systems for people to look at/mess with, as well as discuss how systems differ from one another, potential flaws, default behaviors, and how you can turn a defunct POS system into a low cost skimmer…for educational purposes only. … Seriously.

POS Systems with pope – You Tube

Categories
Past Events

May Meeting: Binary patching with Backdoor Factory

Who: DC801
What: May Meeting
When: Friday May 1st, 2015 | 19:00
Where: 801 Labs Hacker Space.
353 East 200 South Suite #B
Salt Lake City, UT 84111

Details: After a long absence, DC801 is back with its monthly meetings. This month, we will be talking about maliciously patching binaries with a program called Backdoor Factory. Backdoor factory allows you to patch malicious payloads into existing binaries without increasing the file size of the original binary. Backdoor Factory is an incredibly fun tool so come out and learn how to start rolling your own backdoored binaries.

Backdoor Facotry Meeting – YouTube