Program Overview
The FIRST Technical Colloquium (TC) event is restricted to FIRST members only and will be held in Nov 17-20, 2008.
Nevertheless, since this will be a joint event with other CSIRT initiatives in the region, there will be additional events adjacent to the TC in order to achieve non-FIRST-members as well. The event is the Security Workshop.
Monday, November 17th
| Security Workshop |
|---|
| 08:30 – 09:00 | Registration |
| 09:00 – 09:30 | Workshop official opening session |
| 09:30 – 10:30 | US iDefense 2009 Predictions Michael La Pilla (VeriSign – iDefense, US) |
| 10:30 – 11:00 | Coffee Break |
| 13:00 – 14:30 | Lunch |
| 16:30 – 17:00 | Coffee Break |
Tuesday, November 18th
| Security Workshop |
|---|
| 09:30 – 10:30 | UY Técnicas y Herramientas para la Formación y Entrenamiento en Seguridad Informática Alejandro Blanco, Gustavo Betarte, Marcelo Rodríguez (GSI Fing - UdelaR, UY) |
| 10:30 – 11:00 | Coffee Break |
| 13:00 – 14:30 | Lunch |
| 16:30 – 17:00 | Coffee Break |
Wednesday, November 19th
| 10:30 – 11:00 | Coffee Break |
| 12:30 – 14:00 | Lunch |
Thursday, November 20th
| FIRST TC Hands On classes (restricted to FIRST members) |
|---|
| 09:30 – 10:30 | BR Web vulnerability and exploits Atanaí Sousa Ticianelli (CAIS/RNP – Brazilian Academic and Research Network, BR) |
| 10:30 – 11:00 | Coffee Break |
| 11:00 – 13:00 | BR Web vulnerability and exploits Atanaí Sousa Ticianelli (CAIS/RNP – Brazilian Academic and Research Network, BR) |
| 13:00 – 14:00 | Lunch |
- US
iDefense 2009 Predictions
Michael La Pilla (iDefense, US)
Michael La Pilla, Manager, iDefense Malicious Code Operations Team
Mr. La Pilla leads the iDefense Malicious Code Operations Group (Malcode), responsible for the active collection of open-source intelligence, and for the reporting and analysis of new and prevalent malicious code. Mr. La Pilla also develops and maintains projects for the iDefense malicious code lab. Mr. La Pilla's expertise lies in the area of malicious code that targets financial institutions and their customers. Prior to joining iDefense, Mr. La Pilla worked as a contractor in the Web hosting sector while pursuing a BS in Computer Engineering from Virginia Tech.
November 17, 2008 09:30-10:30
Registration
November 17, 2008 08:30-09:00
- BR
Web vulnerability and exploits
Atanaí Sousa Ticianelli (Brazilian Academic and Research Network, BR)
Web applications have become an interesting target to attacks due the high quantity of sensible data put online. Unfortunately, keep these applications safe rely on from server secure installation to the planned application development and tests. We are going to demonstrate how some attacks can take advantage of simple systems vulnerabilities or even very complex ones to compromise web applications.
Format
It will be done a brief introduction about web applications threats followed by two exercises showing the exploration of vulnerabilities on web applications. To participate students are advised to install vmware (www.vmware.com). Images will be provided during class.
November 20, 2008 09:30-10:30, November 20, 2008 11:00-13:00
