-
Notifications
You must be signed in to change notification settings - Fork 2
/
Copy pathindex.html
executable file
·1328 lines (1143 loc) · 86.8 KB
/
index.html
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
479
480
481
482
483
484
485
486
487
488
489
490
491
492
493
494
495
496
497
498
499
500
501
502
503
504
505
506
507
508
509
510
511
512
513
514
515
516
517
518
519
520
521
522
523
524
525
526
527
528
529
530
531
532
533
534
535
536
537
538
539
540
541
542
543
544
545
546
547
548
549
550
551
552
553
554
555
556
557
558
559
560
561
562
563
564
565
566
567
568
569
570
571
572
573
574
575
576
577
578
579
580
581
582
583
584
585
586
587
588
589
590
591
592
593
594
595
596
597
598
599
600
601
602
603
604
605
606
607
608
609
610
611
612
613
614
615
616
617
618
619
620
621
622
623
624
625
626
627
628
629
630
631
632
633
634
635
636
637
638
639
640
641
642
643
644
645
646
647
648
649
650
651
652
653
654
655
656
657
658
659
660
661
662
663
664
665
666
667
668
669
670
671
672
673
674
675
676
677
678
679
680
681
682
683
684
685
686
687
688
689
690
691
692
693
694
695
696
697
698
699
700
701
702
703
704
705
706
707
708
709
710
711
712
713
714
715
716
717
718
719
720
721
722
723
724
725
726
727
728
729
730
731
732
733
734
735
736
737
738
739
740
741
742
743
744
745
746
747
748
749
750
751
752
753
754
755
756
757
758
759
760
761
762
763
764
765
766
767
768
769
770
771
772
773
774
775
776
777
778
779
780
781
782
783
784
785
786
787
788
789
790
791
792
793
794
795
796
797
798
799
800
801
802
803
804
805
806
807
808
809
810
811
812
813
814
815
816
817
818
819
820
821
822
823
824
825
826
827
828
829
830
831
832
833
834
835
836
837
838
839
840
841
842
843
844
845
846
847
848
849
850
851
852
853
854
855
856
857
858
859
860
861
862
863
864
865
866
867
868
869
870
871
872
873
874
875
876
877
878
879
880
881
882
883
884
885
886
887
888
889
890
891
892
893
894
895
896
897
898
899
900
901
902
903
904
905
906
907
908
909
910
911
912
913
914
915
916
917
918
919
920
921
922
923
924
925
926
927
928
929
930
931
932
933
934
935
936
937
938
939
940
941
942
943
944
945
946
947
948
949
950
951
952
953
954
955
956
957
958
959
960
961
962
963
964
965
966
967
968
969
970
971
972
973
974
975
976
977
978
979
980
981
982
983
984
985
986
987
988
989
990
991
992
993
994
995
996
997
998
999
1000
<!DOCTYPE html>
<html lang="en" ng-app="app">
<head>
<meta charset="utf-8">
<meta http-equiv="X-UA-Compatible" content="IE=edge">
<meta name="viewport" content="initial-scale=0.7, maximum-scale=1">
<meta name="description" content="">
<meta name="author" content="">
<title>Securi-Tay 2017</title>
<!-- Bootstrap Core CSS -->
<link rel="stylesheet" href="css/bootstrap.min.css" type="text/css">
<!-- Custom Fonts -->
<link href='https://fonts.googleapis.com/css?family=Open+Sans:300italic,400italic,600italic,700italic,800italic,200,400,300,600,700,800' rel='stylesheet' type='text/css'>
<link href='https://fonts.googleapis.com/css?family=Merriweather:400,300,300italic,400italic,700,700italic,900,900italic' rel='stylesheet' type='text/css'>
<link rel="stylesheet" href="font-awesome/css/font-awesome.min.css" type="text/css">
<!-- Custom CSS -->
<link rel="stylesheet" href="./css/creative.css" type="text/css">
<!-- Favicon code -->
<meta name="application-name" content="Securi-Tay 2017"/>
<meta name="msapplication-TileColor" content="#FFFFFF" />
<!-- Coloured application bars -->
<!-- Chrome, Firefox OS and Opera -->
<meta name="theme-color" content="#682d8c">
<!-- Windows Phone -->
<meta name="msapplication-navbutton-color" content="#682d8c">
<!-- iOS Safari -->
<meta name="apple-mobile-web-app-status-bar-style" content="#682d8c">
<!-- HTML5 Shim and Respond.js IE8 support of HTML5 elements and media queries -->
<!-- WARNING: Respond.js doesn't work if you view the page via file:// -->
<!--[if lt IE 9]>
<script src="https://oss.maxcdn.com/libs/html5shiv/3.7.0/html5shiv.js"></script>
<script src="https://oss.maxcdn.com/libs/respond.js/1.4.2/respond.min.js"></script>
<![endif]-->
</head>
<body id="page-top">
<!-- ************************** --
-- Site Design by Adam Rapley --
-- www.adamrapley.com --
-- ************************** -->
<nav id="mainNav" class="navbar navbar-default navbar-fixed-top">
<div class="container-fluid">
<!-- Brand and toggle get grouped for better mobile display -->
<div class="navbar-header">
<button type="button" class="navbar-toggle collapsed" data-toggle="collapse" data-target="#bs-example-navbar-collapse-1">
<span class="sr-only">Toggle navigation</span>
<span class="icon-bar"></span>
<span class="icon-bar"></span>
<span class="icon-bar"></span>
</button>
<a class="navbar-brand page-scroll" href="#page-top"><img class="brandlogo" src="img/ehslogoblackbgfill.png"></a>
</div>
<!-- Collect the nav links, forms, and other content for toggling -->
<div class="collapse navbar-collapse" id="bs-example-navbar-collapse-1">
<ul class="nav navbar-nav navbar-right pull-right">
<li>
<a class="page-scroll" href="#about">About</a>
</li>
<li>
<a class="page-scroll" href="#sponsors">Sponsors</a>
</li>
<li>
<a class="page-scroll" href="#cfs">CFS</a>
</li>
<li>
<a class="page-scroll" href="#speakers">Speakers</a>
</li>
<li>
<a class="page-scroll" href="#program">Schedule</a>
</li>
<li>
<a class="page-scroll" href="#tickets">Tickets</a>
</li>
</ul>
</div>
<!-- /.navbar-collapse -->
</div>
<!-- /.container-fluid -->
</nav>
<header>
<div class="header-content">
<div class="header-content-inner">
<!-- Hero image used under CC BY-NC-ND 4.0
Original image by Tim Haynes 2013 and found here:
http://soc.sty.nu/2014/12/bright-light-city/ -->
<img src="img/webwhitelegit.png" class="" id="logo" />
</div>
</div>
</header>
<section class="bg-primary" id="about">
<div class="container">
<div class="row">
<div class="col-lg-8 col-lg-offset-2 text-center">
<h2 class="section-heading">It's time...</h2>
<hr class="light">
<p class="text-faded">Securi-Tay is an information Security conference held by the Ethical Hacking Society at Abertay University. After the sell-out success of Securi-Tay V this year’s event will run on Friday 24th of February.
The conference will be held in Abertay University, benefiting from the fantastic transport links to Dundee.
As well as transport, Dundee benefits from affordable accommodation in the city centre, as well as a thriving technology community and the reputation for being Scotland’s sunniest city.</p>
<p class="text-faded">
The conference is aimed at anyone with an interest in Hacking and Information Security. You don’t need to be a l33t h4x0r to attend and enjoy the event: Securi-Tay promises to provide a fantastic, worthwhile experience for everyone, new to the scene and conference veteran alike.
The conference will feature talks from industry professionals and students as well as some workshops.
Lunch and an evening buffet will be provided in the bar across the street. </p>
</div>
</div>
</div>
</section>
<section class="no-padding" id="sponsors">
<div class="container-fluid">
<div class="col-lg-8 col-lg-offset-2 text-center">
<h2 class="section-heading">Sponsors</h2>
<hr class="light">
</div>
<div class="row no-gutter">
<div class="col-lg-6 col-sm-6 col-lg-offset-3 col-sm-offset-3">
<div class="portfolio-box pb1">
<a href="#mwr">
<div class="portfolio-box-caption" data-toggle="modal" data-target="#mwr">
<div class="portfolio-box-caption-content">
<div class="sponsor-title">
After Party Sponsor
</div>
<div class="company-name">
MWR InfoSecurity
</div>
</div>
</div>
</a>
<div class="modal fade" id="mwr" tabindex="-1" role="dialog" aria-labelledby="After Party Sponsor - MWR">
<div class="modal-dialog" role="document">
<div class="modal-content">
<div class="modal-header">
<button type="button" class="close" data-dismiss="modal" aria-label="Close"><span aria-hidden="true">×</span></button>
<h4 class="modal-title" id="myModalLabel">MWR</h4>
</div>
<div class="modal-body">
MWR are proud sponsors of Securi-Tay once again - come and say Hi at our stand where you can talk to the team about a career in cyber security, the exciting research projects consultants are working on, or just about anything really! We’ll be running a challenge at our stand - all you need to do is to solve a riddle and successfully unlock one of the nine padlocks for your chance to win a Anki Overdrive. This year we’ll be delivering two talks so don't forget to catch William Burgess and Matthew Watkins present on the concept of threat hunting in their “Advanced Attack Detection” presentation and Sam Brown present on Windows kernel mode attack surface in his “'A Window into Ring0” presentation.
<br /><br />
And.... if you're interested in joining the MWR team, we are currently looking for Interns, Junior Security Consultants and Junior Software Developers/ Testers across our MWR office locations worldwide, to find out more please visit: <a href="http://www.mwrinfosecurity.com/careers" target="_blank">www.mwrinfosecurity.com/careers</a>. Applications for our UK Summer Internships are still open so get your application to us before Friday 3rd March, go to: <a href="http://mwr.to/internships" target="_blank">mwr.to/internships</a>.
<br/><br />
Established in 2003, MWR works with clients to deliver security assurance, incident response, security behaviour training, managed detection & response and numerous other cyber defence services.
<br /><br />
<i class="fa fa-globe"></i> <a href="https://www.mwrinfosecurity.com/" target="_blank">mwrinfosecurity.com</a>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
<div class="row no-gutter">
<div class="col-lg-6 col-sm-6">
<div class="portfolio-box pb2">
<a href="#ncc">
<div class="portfolio-box-caption" data-toggle="modal" data-target="#ncc">
<div class="portfolio-box-caption-content">
<div class="sponsor-title">
Gold Sponsor
</div>
<div class="company-name">
NCC Group
</div>
</div>
</div>
</a>
<div class="modal fade" id="ncc" tabindex="-1" role="dialog" aria-labelledby="Gold Sponsor - NCC Group">
<div class="modal-dialog" role="document">
<div class="modal-content">
<div class="modal-header">
<button type="button" class="close" data-dismiss="modal" aria-label="Close"><span aria-hidden="true">×</span></button>
<h4 class="modal-title" id="myModalLabel">NCC Group</h4>
</div>
<div class="modal-body">
NCC Group is a global expert in cyber security and risk mitigation, working with businesses to protect their brand, value and reputation against the ever-evolving threat landscape. A FTSE 250 listed company, the Group is a trusted advisor to more than 15,000 clients worldwide. Headquartered in Manchester, UK, with 32 offices across the world, the Group employs more than 1,750 specialists in information security, assurance and technology. Through a unique range of services, the company helps organisations to prepare for and respond to cyber threats. It provides organisations with peace of mind that that their most important assets are protected, available and operating as they should be at all times.
<br /><br />
Follow us on twitter: <a href="https://twitter.com/NCCGroupCareers" target="_blank">@NCCGroupCareers</a>
<br /><br />
<i class="fa fa-globe"></i> <a href="https://nccgroup.trust" target="_blank">nccgroup.trust</a>
</div>
</div>
</div>
</div>
</div>
</div>
<div class="col-lg-6 col-sm-6">
<div class="portfolio-box pb5">
<a href="https://www.secureworks.co.uk/" target="_blank">
<div class="portfolio-box-caption">
<div class="portfolio-box-caption-content">
<div class="sponsor-title">
Gold Sponsor
</div>
<div class="company-name">
SecureWorks
</div>
</div>
</div>
</a>
</div>
</div>
</div>
<div class="row no-gutter">
<div class="col-lg-4 col-sm-4">
<div class="portfolio-box pb9">
<a href="https://home.bt.com/" target="_blank">
<div class="portfolio-box-caption">
<div class="portfolio-box-caption-content">
<div class="sponsor-title">
Silver Sponsor
</div>
<div class="company-name">
BT
</div>
</div>
</div>
</a>
</div>
</div>
<div class="col-lg-4 col-sm-4">
<div class="portfolio-box pb11">
<a href="https://www.comptia.org/" target="_blank">
<div class="portfolio-box-caption">
<div class="portfolio-box-caption-content">
<div class="sponsor-title">
Silver Sponsor
</div>
<div class="company-name">
CompTIA
</div>
</div>
</div>
</a>
</div>
</div>
<div class="col-lg-4 col-sm-4">
<div class="portfolio-box pb3">
<a href="http://www.ecs.co.uk/" target="_blank">
<div class="portfolio-box-caption">
<div class="portfolio-box-caption-content">
<div class="sponsor-title">
Silver Sponsor
</div>
<div class="company-name">
ECS
</div>
</div>
</div>
</a>
</div>
</div>
</div>
<div class="row no-gutter">
<div class="col-lg-6 col-sm-6">
<div class="portfolio-box pb4">
<a href="#pentest">
<div class="portfolio-box-caption" data-toggle="modal" data-target="#pentest">
<div class="portfolio-box-caption-content">
<div class="sponsor-title">
Silver Sponsor
</div>
<div class="company-name">
Pentest Limited
</div>
</div>
</div>
</a>
<div class="modal fade" id="pentest" tabindex="-1" role="dialog" aria-labelledby="Silver Sponsor - Pentest Limited">
<div class="modal-dialog" role="document">
<div class="modal-content">
<div class="modal-header">
<button type="button" class="close" data-dismiss="modal" aria-label="Close"><span aria-hidden="true">×</span></button>
<h4 class="modal-title" id="myModalLabel">Pentest Limited</h4>
</div>
<div class="modal-body">
Pentest Limited is a Manchester-based penetration testing firm specialising in Application Security. Formed in 2001, Pentest focused on Application Security from the start and now employ one of the largest teams of Application Security specialists. As experts in our field, we are in the very fortunate position of working with a wide range of clients, from multi-national blue-chips to niche technology pioneers, allowing our testers to work on interesting, varied and challenging projects, for clients who genuinely care about security.
<br /><br />
<i class="fa fa-globe"></i> <a href="http://www.pentest.co.uk/" target="_blank">pentest.co.uk</a>
</div>
</div>
</div>
</div>
</div>
</div>
<div class="col-lg-6 col-sm-6">
<div class="portfolio-box pb10">
<a href="https://www.synopsys.com/" target="_blank">
<div class="portfolio-box-caption">
<div class="portfolio-box-caption-content">
<div class="sponsor-title">
Silver Sponsor
</div>
<div class="company-name">
Synopsys
</div>
</div>
</div>
</a>
</div>
</div>
</div>
<div class="row no-gutter">
<div class="col-lg-4 col-sm-4">
<div class="portfolio-box pb7">
<a href="https://www.abertay.ac.uk/" target="_blank">
<div class="portfolio-box-caption">
<div class="portfolio-box-caption-content">
<div class="sponsor-title">
Bronze Sponsor
</div>
<div class="company-name">
Abertay University
</div>
</div>
</div>
</a>
</div>
</div>
<div class="col-lg-4 col-sm-4">
<div class="portfolio-box pb8">
<a href="https://www.bsidesedinburgh.org.uk/" target="_blank">
<div class="portfolio-box-caption">
<div class="portfolio-box-caption-content">
<div class="sponsor-title">
Bronze Sponsor
</div>
<div class="company-name">
BSides Edinburgh
</div>
</div>
</div>
</a>
</div>
</div>
<div class="col-lg-4 col-sm-4">
<div class="portfolio-box pb6">
<a href="https://www.ncr.com/" target="_blank">
<div class="portfolio-box-caption">
<div class="portfolio-box-caption-content">
<div class="sponsor-title">
Bronze Sponsor
</div>
<div class="company-name">
NCR
</div>
</div>
</div>
</a>
</div>
</div>
</div>
</div>
</section>
<section class="bg-primary" id="cfs">
<div class="container">
<div class="row">
<div class="col-lg-8 col-lg-offset-2 text-center">
<h2 class="section-heading">Call For Sponsors</h2>
<hr class="light">
<p class="text-faded">Securi-Tay wouldn't be possible without the help of our sponsors. If you're interested in sponsoring Securi-Tay, please contact us at <a href="mailto:[email protected]">[email protected]</a>.</p>
</div>
</div>
</div>
</section>
<section class="bg-primary" id="speakers">
<div class="container text-center">
<div class="row">
<div class="col-lg-8 col-lg-offset-2 text-center">
<h2 class="section-heading">Speakers</h2>
<hr class="light">
</div>
</div>
<div class="row no-gutter speakers">
<div class="col-lg-2 text-center col-lg-offset-2">
<a href="https://twitter.com/pycycle" target="_blank">
<img src="img/speakerimages/pycycle.jpg" class="img-circle" />
<p class="text-faded">Christoph Rottermanner</p>
</a>
</div>
<div class="col-lg-2 text-center">
<a href="https://twitter.com/dantoml" target="_blank">
<img src="img/speakerimages/dantoml.jpg" class="img-circle" />
<p class="text-faded">Danielle Tomlinson</p>
</a>
</div>
<div class="col-lg-2 text-center">
<a href="https://twitter.com/DanRaywood" target="_blank">
<img src="img/speakerimages/DanRaywood.jpg" class="img-circle" />
<p class="text-faded">Dan Raywood</p>
</a>
</div>
<div class="col-lg-2 text-center">
<a href="https://twitter.com/slashcrypto" target="_blank">
<img src="img/speakerimages/slashcrypto.jpg" class="img-circle" />
<p class="text-faded">David Wind</p>
</a>
</div>
</div>
<div class="row no-gutter speakers">
<div class="col-lg-2 text-center col-lg-offset-1">
<a href="https://twitter.com/GavinHolt" target="_blank">
<img src="img/speakerimages/GavinHolt.jpg" class="img-circle" />
<p class="text-faded">Gavin Holt</p>
</a>
</div>
<div class="col-lg-2 text-center">
<a href="https://twitter.com/gsuberland" target="_blank">
<img src="img/speakerimages/gsuberland.jpg" class="img-circle" />
<p class="text-faded">Graham Sutherland</p>
</a>
</div>
<div class="col-lg-2 text-center">
<a href="https://twitter.com/mightyshakerjnr" target="_blank">
<img src="img/speakerimages/mightyshakerjnr.jpg" class="img-circle" />
<p class="text-faded">Jamie Hoyle</p>
</a>
</div>
<div class="col-lg-2 text-center">
<img src="img/speakerimages/ksenia.jpg" class="img-circle" />
<p class="text-faded">Ksenia Dmitrieva-Peguero</p>
</div>
<div class="col-lg-2 text-center">
<img src="img/speakerimages/peter.jpg" class="img-circle" />
<p class="text-faded">Peter Cowman</p>
</div>
</div>
<div class="row no-gutter speakers">
<div class="col-lg-2 text-center col-lg-offset-2">
<a href="https://twitter.com/rafeuk" target="_blank">
<img src="img/speakerimages/purpleegg.jpg" class="img-circle" />
<p class="text-faded">Rafe Pilling</p>
</a>
</div>
<div class="col-lg-2 text-center">
<a href="https://twitter.com/_samdb_" target="_blank">
<img src="img/speakerimages/_samdb_.jpg" class="img-circle" />
<p class="text-faded">Sam Brown</p>
</a>
</div>
<div class="col-lg-2 text-center">
<img src="img/speakerimages/purpleegg.jpg" class="img-circle" />
<p class="text-faded">William Burgess</p>
</div>
<div class="col-lg-2 text-center">
<a href="https://twitter.com/MattWhatkins" target="_blank">
<img src="img/speakerimages/MattWhatkins.jpg" class="img-circle" />
<p class="text-faded">Matt Watkins</p>
</a>
</div>
</div>
</div>
</section>
<section id="program">
<div class="container">
<div class="row">
<div class="col-lg-12 text-center">
<h2 class="section-heading">Schedule</h2>
<hr class="primary">
<p class="text-faded">We're happy to announce the schedule for the conference is now available!</p>
<!-- CONTENT -->
<div id="myTabContent" class="tab-content">
<!-- DAY 1 -->
<div role="tabpanel" class="tab-pane active fade in" id="day1" aria-labelledby="day1-tab">
<div class="panel-group" id="accordion1" role="tablist" aria-multiselectable="true">
<!-- 9-00 TIMESTAMP -->
<div class="shed-row-item row">
<div class="col-lg-1 col-md-1 col-sm-1">
<p class="date">9-00</p>
</div>
<!-- T1/2 REGISTRATION -->
<div class="panel panel-default col-lg-11 col-md-11 col-sm-11">
<!-- Program Heading -->
<div class="panel-heading" role="tab" id="heading1">
<div class="row">
<div class="col-lg-11 col-md-11 col-sm-11">
<h4 class="panel-title">
<a data-toggle="collapse" data-parent="#accordion" href="#Registration" aria-expanded="true" aria-controls="Registration">
Registration
</a>
</h4>
</div>
</div>
</div>
<div id="Registration" class="panel-collapse collapse" role="tabpanel" aria-labelledby="heading1">
<!-- Registration Content -->
<div class="panel-body">
<div class="row">
<div class="col-lg-7 col-md-7 col-sm-11 col-lg-offset-2 col-md-offset-2">
<p class="speaker-name uppercase">Welcome!</p>
<p>Meet us in the foyer of Abertay University and sign in!<br/>There's also free stuff!</p>
<p class="abstract">The first 100 people to arrive will get a free bacon roll! (or veggie alternative)</p>
<div class="iconcontainer">
<p class="itemIcon"><i class="fa fa-lg fa-clock-o"></i> <span class="small">60 mins</span></p>
<p class="itemIcon"><i class="fa fa-lg fa-map-marker"></i> <span class="small">Foyer</span></p>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
<!-- 10-00 TIMESTAMP -->
<div class="row shed-row-item shed-dark">
<div class="col-lg-1 col-md-1 col-sm-1">
<p class="date">10-00</p>
</div>
<!-- T1/2 NCC Keynote -->
<div class="panel shed-dark panel-default col-lg-11 col-md-11 col-sm-11">
<!-- Program Heading -->
<div class="shed-dark panel-heading" role="tab" id="heading1">
<div class="row">
<div class="col-lg-11 col-md-11 col-sm-11">
<h4 class="panel-title">
<a data-toggle="collapse" data-parent="#accordion" href="#NCCKey" aria-expanded="true" aria-controls="NCCKeynote">
NCC Keynote
</a>
</h4>
</div>
</div>
</div>
<div id="NCCKey" class="panel-collapse collapse" role="tabpanel" aria-labelledby="heading1">
<!-- Registration Content -->
<div class="panel-body">
<div class="row">
<div class="col-lg-7 col-md-7 col-sm-11 col-lg-offset-2 col-md-offset-2">
<h4>Adventures – Pentesting Windows Estates (What I wish I’d known before I got a job)</h4>
<p class="abstract">In a world of IoT vulnerabilities and exploits so devastating they have their own marketing teams , it could be very easy to forget the daily threats that organisations really face. Desktop estates, endpoint security and the ever-present threat of users opening attachments.<br /><br />
Whilst not as obviously engaging as Mirai bot, shadow brokers or fuzzy bears, Active Directory security is an often-undervalued area for personal learning by those just starting out in the industry.
In a talk aimed squarely at students and those new to security, Gavin will cover the basics of active directory; Domains, forests, trusts, users, computers, organisational units and group policy objects. Once the basics are covered, the talk will dive into some scenarios encountered in the wild by Gavin and his NCC Group colleagues, where simple misconfigurations can have severe consequences. Finally, the talk will cover some of the offensive techniques commonly employed against windows estates, to give budding pen testers, graduates and security enthusiasts some ideas for personal learning to take away from the talk.</p>
<p class="itemIcon"><i class="fa fa-lg fa-clock-o"></i> <span class="small">60 mins</span></p>
<p class="itemIcon"><i class="fa fa-lg fa-map-marker"></i> <span class="small">Lecture Theatre 1 (2516)</span></p>
<hr class="primary" />
</div>
<div class="col-lg-3 col-md-3 col-sm-11">
<h5>About Gavin Holt</h5>
<p class="small">Gavin Holt is a Senior Security Consultant from the Technical Security Consultancy division of NCC Group. After graduating, Gavin joined NCC Group as a junior consultant where he spent six months on research and learning from more experienced consultants. A 2014 Abertay University graduate and former VP of the Abertay Ethical Hacking Society, Gavin spends his time using what he learned at Abertay and in the NCC Group graduate scheme to help clients secure their infrastructure and applications from a wide range of threats.. Having previously presented research on Big Data security, Gavin is currently focussed on scaling out the automated gathering of Active Directory information to better allow people to understand the security posture of their estate.</p>
<span class="about-speaker"><i class="fa fa-lg fa-globe"></i> <a class="small" href="https://nccgroup.trust/" target="_blank">nccgroup.trust</a></span>
</div>
</div>
</div>
</div>
</div>
</div>
<!-- DOUBLETRACK -->
<!-- 11-00 TIMESTAMP -->
<div class="row shed-row-item">
<div class="col-lg-1 col-md-1 col-sm-1">
<p class="date">11-00</p>
</div>
<!-- T1 Snowden -->
<div class="panel panel-default col-lg-5 col-md-5 col-sm-5">
<!-- Program Heading -->
<div class="panel-heading" role="tab" id="heading1">
<div class="row">
<div class="col-lg-12 col-md-12 col-sm-12">
<h4 class="panel-title">
<a data-toggle="collapse" data-parent="#MalwareMemory" href="#MalwareMemory" aria-expanded="true" aria-controls="MalwareMemory">
Malware in Memory
</a>
</h4>
</div>
</div>
</div>
<div id="MalwareMemory" class="panel-collapse collapse" role="tabpanel" aria-labelledby="heading1">
<!-- Snowden Content -->
<div class="panel-body">
<div class="row">
<div class="col-lg-12 col-md-12 col-sm-12">
<p class="abstract">Registry keys, hidden processes, known strings and other indicators residing in memory can all help with the early identification of malware infections, especially fileless varieties. This talk will look at how relevant structures are stored in memory, along with a high level look at Windows memory management and a discussion of the pros/cons of some possible methods for searching RAM.</p>
<p class="itemIcon"><i class="fa fa-lg fa-clock-o"></i> <span class="small">60 mins</span></p>
<p class="itemIcon"><i class="fa fa-lg fa-map-marker"></i> <span class="small">Lecture Theatre 1 (2516)</span></p>
<hr class="thin"/>
<h5>About Peter Cowman</h5>
<p class="small">Final year Ethical Hacking student at Abertay University. Interested in malware and memory analysis.</p>
</div>
</div>
</div>
</div>
</div>
<!-- T2 Cash Only -->
<div class="panel panel-default col-lg-5 col-md-5 col-sm-5">
<!-- Program Heading -->
<div class="panel-heading" role="tab" id="heading1">
<div class="row">
<div class="col-lg-12 col-md-12 col-sm-12">
<h4 class="panel-title">
<a data-toggle="collapse" data-parent="#AngularJS" href="#AngularJS" aria-expanded="true" aria-controls="AngularJS">
How secure is AngularJS?
</a>
</h4>
</div>
</div>
</div>
<div id="AngularJS" class="panel-collapse collapse" role="tabpanel" aria-labelledby="heading1">
<!-- Registration Content -->
<div class="panel-body">
<div class="row">
<div class="col-lg-12 col-md-12 col-sm-12">
<p class="abstract">Client-side JavaScript frameworks bring a lot of functionality and logic to the front-end. With all this code running in the browser, do they impose extra risks to the applications? Frameworks like AngularJS incorporate many security features like context-aware encoding and CSRF protection, but they also leave gaps and traps in which developers may fall when putting too much trust into client side code. In this presentation we will look at the security controls provided by the AngularJS framework out of the box and the security defects that still reside in the Angular code and available plugins. Attendees will see demonstrations of several attacks, such as a DOM-XSS, a template injection, and a sandbox bypass.</p>
<p class="itemIcon"><i class="fa fa-lg fa-clock-o"></i> <span class="small">60 mins</span></p>
<p class="itemIcon"><i class="fa fa-lg fa-map-marker"></i> <span class="small">Lecture Theatre 2 (2517)</span></p>
<hr class="thin"/>
<h5>About Ksenia Dmitrieva-Peguero</h5>
<p class="small">Ksenia Dmitrieva-Peguero is a Principal Consultant at Cigital with seven years of experience in application security and five years of software development experience. She performed numerous penetration tests, code reviews, and architecture analysis engagements for clients in financial services, entertainment, telecommunications, energy, and enterprise security industries. Her current concentration is on analyzing JavaScript frameworks and HTML5 technologies, researching their security implications, vulnerability discovery and remediation. Ms. Dmitrieva-Peguero has delivered presentations and trainings at conferences around the world, including BSides Security in London, Nullcon in India, AppSec California in the USA, RSA Asia Pacific & Japan in Singapore, and AppSec Europe in Italy.<br /><br/>
Ksenia holds a M.S. in Computer Science and is currently pursuing her Ph.D. at George Washington University.</p>
</div>
</div>
</div>
</div>
</div>
</div>
<!-- 12-00 TIMESTAMP -->
<div class="shed-dark shed-row-item row">
<div class="col-lg-1 col-md-1 col-sm-1">
<p class="date">12-00</p>
</div>
<!-- T1/2 REGISTRATION -->
<div class="panel shed-dark panel-default col-lg-11 col-md-11 col-sm-11">
<!-- Program Heading -->
<div class="shed-dark panel-heading" role="tab" id="heading1">
<div class="row">
<div class="col-lg-11 col-md-11 col-sm-11">
<h4 class="panel-title">
<a data-toggle="collapse" data-parent="#accordion" href="#lunchone" aria-expanded="true" aria-controls="LunchOne">
Lunch
</a>
</h4>
</div>
</div>
</div>
<div id="lunchone" class="panel-collapse collapse" role="tabpanel" aria-labelledby="heading1">
<!-- Registration Content -->
<div class="panel-body">
<div class="row">
<div class="col-lg-7 col-md-7 col-sm-11 col-lg-offset-2 col-md-offset-2">
<p>Hop over the road to Abertay Student Union for a bite to eat before the afternoon talks.<br /> Oh, lunch is provided as well by the way!</p>
<div class="iconcontainer">
<p class="itemIcon"><i class="fa fa-lg fa-clock-o"></i> <span class="small">45 mins</span></p>
<p class="itemIcon"><i class="fa fa-lg fa-map-marker"></i> <span class="small">Bar One</span></p>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
<!-- DOUBLETRACK -->
<!-- 12-45 TIMESTAMP -->
<div class="row shed-row-item">
<div class="col-lg-1 col-md-1 col-sm-1">
<p class="date">12-45</p>
</div>
<!-- T2 Cash Only -->
<div class="panel panel-default col-lg-5 col-md-5 col-sm-5">
<!-- Program Heading -->
<div class="panel-heading" role="tab" id="heading1">
<div class="row">
<div class="col-lg-12 col-md-12 col-sm-12">
<h4 class="panel-title">
<a data-toggle="collapse" data-parent="#accordion" href="#attackdetection" aria-expanded="true" aria-controls="attackdetection">
Advanced Attack Detection
</a>
</h4>
</div>
</div>
</div>
<div id="attackdetection" class="panel-collapse collapse" role="tabpanel" aria-labelledby="heading1">
<!-- Registration Content -->
<div class="panel-body">
<div class="row">
<div class="col-lg-12 col-md-12 col-sm-12">
<p class="abstract">We hear about advancements in the offensive security realm all the time, with new attack techniques being published, new tools released and high profile breaches of major organisations reported in the news. With a whole bunch of technical certifications, training and frameworks available, the offensive security industry is very well represented and fairly well understood, at least in comparison to defensive security. But what do these attacks actually look like, how can we defend against them, and what techniques are there for detecting them?<br/><br />
In this talk, we’ll explain some of the technical concepts of threat hunting. We will be looking at what is beyond traditional signature detection – the likes of AV, IPS/IDS and SIEMs, which in our experience are ineffective – and detailing some of the ways you can catch real attackers in the act. As a case study, we’ll look at some of the specifics of common attack frameworks - the likes of Metasploit and Powershell Empire - walking through an example attack, and showing how they can be detected. From large-scale process monitoring to live memory analysis and anomaly detection techniques, we will cover some of the technical quirks when it comes to effective attack detection.</p>
<p class="itemIcon"><i class="fa fa-lg fa-clock-o"></i> <span class="small">60 mins</span></p>
<p class="itemIcon"><i class="fa fa-lg fa-map-marker"></i> <span class="small">Lecture Theatre 1 (2516)</span></p>
<hr class="thin"/>
<h5>About William Burgess & Matt Watkins</h5>
<p class="small">This presentation will be given by myself and a colleague, Matt Watkins, from Countercept, MWR Info Security. Our interests are in the nitty gritty of Windows Internals, detecting bad guys, memory forensics and threat hunting, and this talk will outline our experiences of doing this at scale.</p>
</div>
</div>
</div>
</div>
</div>
<!-- T2 Cash Only -->
<div class="panel panel-default col-lg-5 col-md-5 col-sm-5">
<!-- Program Heading -->
<div class="panel-heading" role="tab" id="heading1">
<div class="row">
<div class="col-lg-12 col-md-12 col-sm-12">
<h4 class="panel-title">
<a data-toggle="collapse" data-parent="#accordion" href="#IoT" aria-expanded="true" aria-controls="IoT">
IoT security from the other side
</a>
</h4>
</div>
</div>
</div>
<div id="IoT" class="panel-collapse collapse" role="tabpanel" aria-labelledby="heading1">
<!-- Registration Content -->
<div class="panel-body">
<div class="row">
<div class="col-lg-12 col-md-12 col-sm-12">
<p class="abstract">Security researchers focus a lot on the Internet of Things and the vulnerabilities that exist within it, and rightly so! In this talk, I'll use my experience as the main technical contact for a UK smart plug manufacturer to try and share an insight of how we're trying to fix things in the industry from the other side of the coin. I'll also cover major IoT vulnerabilities, their key learnings points, and how some big players enforce security for companies that use their platform.</p>
<p class="itemIcon"><i class="fa fa-lg fa-clock-o"></i> <span class="small">60 mins</span></p>
<p class="itemIcon"><i class="fa fa-lg fa-map-marker"></i> <span class="small">Lecture Theatre 2 (2517)</span></p>
<hr class="thin"/>
<h5>About Jamie Hoyle</h5>
<p class="small">I'm a software developer from Manchester who specialises in building software for connected devices. I'm currently working as a software consultant for a UK-based Internet of Things company, as well as building a transportation startup. Aside from technology, I watch Bury FC lose every week and run around forests with a map for fun.</p>
</div>
</div>
</div>
</div>
</div>
</div>
<!-- DOUBLETRACK -->
<!-- 13-45 TIMESTAMP -->
<div class="shed-dark shed-row-item row">
<div class="col-lg-1 col-md-1 col-sm-1">
<p class="date">13-45</p>
</div>
<!-- T1 Snowden -->
<div class="panel shed-dark panel-default col-lg-5 col-md-5 col-sm-5">
<!-- Program Heading -->
<div class="shed-dark panel-heading" role="tab" id="heading1">
<div class="row">
<div class="col-lg-12 col-md-12 col-sm-12">
<h4 class="panel-title">
<a data-toggle="collapse" data-parent="#accordion" href="#REDarwin" aria-expanded="true" aria-controls="REDarwin">
Reverse Engineering iOS and Mac apps
</a>
</h4>
</div>
</div>
</div>
<div id="REDarwin" class="panel-collapse collapse" role="tabpanel" aria-labelledby="heading1">
<!-- Snowden Content -->
<div class="panel-body">
<div class="row">
<div class="col-lg-12 col-md-12 col-sm-12">
<p class="abstract">Have you ever wanted to know how a tool or application that you frequently use works? In the case of open source software, you can simply look at the code. But with proprietary software it's not quite that simple, but it's defininitely dooable. <br /><br />
This talk will explain the basics of reverse engineering, and specifically
how to reverse engineer iOS and Mac applications. The talk will go through explaining and demonstrating inspecting an apps network traffic, injecting code into running apps, pulling application binaries, and static/dynamic analysis.</p>
<p class="itemIcon"><i class="fa fa-lg fa-clock-o"></i> <span class="small">60 mins</span></p>
<p class="itemIcon"><i class="fa fa-lg fa-map-marker"></i> <span class="small">Lecture Theatre 1 (2516)</span></p>
<hr class="thin"/>
<h5>About Danielle Tomlinson</h5>
<p class="small">Danielle has been shipping bugs for over a decade. She has worked with a variety of technologies and spent 8 years as an iOS engineer. As a Core Team member of CocoaPods, Fastlane Core Contributor, and as a Software Engineer at CircleCI she can mostly be found building and breaking developer tools. She is also an avid traveller and nomad who despite falling in love with Berlin is usually on a aeroplane.</p>
</div>
</div>
</div>
</div>
</div>
<!-- T2 Cash Only -->
<div class="panel shed-dark panel-default col-lg-5 col-md-5 col-sm-5">
<!-- Program Heading -->
<div class="shed-dark panel-heading" role="tab" id="heading1">
<div class="row">
<div class="col-lg-12 col-md-12 col-sm-12">
<h4 class="panel-title">
<a data-toggle="collapse" data-parent="#accordion" href="#TLSHipsterism" aria-expanded="true" aria-controls="TLSHipsterism">
SSL/TLS Hipsterism: Finding implementation bugs outside the mainstream
</a>
</h4>
</div>
</div>
</div>
<div id="TLSHipsterism" class="panel-collapse collapse" role="tabpanel" aria-labelledby="heading1">
<!-- Registration Content -->
<div class="panel-body">
<div class="row">
<div class="col-lg-12 col-md-12 col-sm-12">
<p class="abstract">A lot of fantastic work has gone into the discovery, analysis, and (on occasion) marketing of SSL/TLS vulnerabilities. Some, such as BEAST and LUCKY13, are issues in the protocol itself. Other bugs, however, affect individual implementations of this complicated and nuanced protocol. This talk will discuss an approach for identifying security bugs in SSL/TLS server implementations, outside the mainstream well-publicised issues that we all know so well.</p>
<p class="itemIcon"><i class="fa fa-lg fa-clock-o"></i> <span class="small">60 mins</span></p>
<p class="itemIcon"><i class="fa fa-lg fa-map-marker"></i> <span class="small">Lecture Theatre 2 (2517)</span></p>
<hr class="thin"/>
<h5>About Graham Sutherland</h5>
<p class="small">Pentester, crypto nerd, hardware tinkerer, veteran Securi-Tay'er.</p>
</div>
</div>
</div>
</div>
</div>
</div>
<!-- 12-00 TIMESTAMP -->
<div class="row shed-row-item">
<div class="col-lg-1 col-md-1 col-sm-1">
<p class="date">14-45</p>
</div>
<!-- T1/2 REGISTRATION -->
<div class="panel panel-default col-lg-11 col-md-11 col-sm-11">
<!-- Program Heading -->
<div class="panel-heading" role="tab" id="heading1">
<div class="row">
<div class="col-lg-11 col-md-11 col-sm-11">
<h4 class="panel-title">
<a data-toggle="collapse" data-parent="#accordion" href="#breakone" aria-expanded="true" aria-controls="LunchOne">
Break
</a>
</h4>
</div>
</div>
</div>
<div id="breakone" class="panel-collapse collapse" role="tabpanel" aria-labelledby="heading1">
<!-- Registration Content -->
<div class="panel-body">
<div class="row">
<div class="col-lg-7 col-md-7 col-sm-11 col-lg-offset-2 col-md-offset-2">
<p><a href="https://www.youtube.com/watch?v=PHdU5sHigYQ" target="_blank">Take five!</a> ... or fifteen.</p>
<div class="iconcontainer">
<p class="itemIcon"><i class="fa fa-lg fa-clock-o"></i> <span class="small">15 mins</span></p>
<p class="itemIcon"><i class="fa fa-lg fa-map-marker"></i> <span class="small">Wherever you want!</span></p>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
<!-- DOUBLETRACK -->
<!-- 15-00 TIMESTAMP -->
<div class="shed-dark shed-row-item row">
<div class="col-lg-1 col-md-1 col-sm-1">
<p class="date">15-00</p>
</div>
<!-- T1 Snowden -->
<div class="panel shed-dark panel-default col-lg-5 col-md-5 col-sm-5">
<!-- Program Heading -->
<div class="shed-dark panel-heading" role="tab" id="heading1">
<div class="row">
<div class="col-lg-12 col-md-12 col-sm-12">
<h4 class="panel-title">
<a data-toggle="collapse" data-parent="#accordion" href="#securedesktop" aria-expanded="true" aria-controls="securedesktop">
Secure (Desktop) Messengers – Usability vs. Security
</a>
</h4>
</div>
</div>
</div>
<div id="securedesktop" class="panel-collapse collapse" role="tabpanel" aria-labelledby="heading1">
<!-- Snowden Content -->
<div class="panel-body">
<div class="row">
<div class="col-lg-12 col-md-12 col-sm-12">
<p class="abstract">Secure messaging became very popular over the last years. People started to switch to WhatsApp alternatives like Signal, Threema and Telegram. At SecuritayV we talked about the security of some of those alternatives in our talk “Post Snowden Communication”. This year our talk focuses on the usability of Signal mobile and the security of the desktop variants “WhatsApp-Web” and “Signal Desktop”.<br /><br />
The first part of this talk will cover a usability study on the Signal mobile application.
During this study we determined how easy/difficult it is to verify a chat partner, send encrypted messages as well as the usability of the application overall. The results were worse than expected … <br /><br />
The second part will be about the security of WhatsApp-Web and Signal-Desktop.
We will explain the process of linking new devices as well as certain attack vectors on both – Signal-Desktop and WhatsApp-Web. Possibilities and attack vectors for the browser to compromise the communication were also part of this research.
Finally, problems with storing data on the local device will be discussed as well as information leakage issues with the exchange of certain information like groups or contacts will be explained.</p>
<p class="itemIcon"><i class="fa fa-lg fa-clock-o"></i> <span class="small">60 mins</span></p>
<p class="itemIcon"><i class="fa fa-lg fa-map-marker"></i> <span class="small">Lecture Theatre 1 (2516)</span></p>
<hr class="thin"/>
<h5>About David Wind & Christoph Rottermanner</h5>
<p class="small">Our names are David Wind and Christoph Rottermanner. We are from Austria and we are currently studying in the third Semester Master “Information Security” at the University of Applied Sciences in St. Pölten - Austria.
Before starting the master studies, we graduated with a bachelors degree at the same university in IT Security.
We work for a company called XSEC in Vienna since two years, with the primary focus on penetration testing, code-auditing and social engineering.
We both break stuff for work and fun, we love cryptography and to encrypt all the things. Also privacy is important to us, because we have something to hide!</p>
</div>
</div>
</div>
</div>
</div>
<!-- T2 Cash Only -->
<div class="panel shed-dark panel-default col-lg-5 col-md-5 col-sm-5">
<!-- Program Heading -->
<div class="shed-dark panel-heading" role="tab" id="heading1">
<div class="row">
<div class="col-lg-12 col-md-12 col-sm-12">
<h4 class="panel-title">
<a data-toggle="collapse" data-parent="#accordion" href="#lightningtalks" aria-expanded="true" aria-controls="lightningtalks">
Lightning Talks
</a>
</h4>
</div>
</div>
</div>
<div id="lightningtalks" class="panel-collapse collapse" role="tabpanel" aria-labelledby="heading1">
<!-- Registration Content -->
<div class="panel-body">
<div class="row">
<div class="col-lg-12 col-md-12 col-sm-12">