PLUG's Upcoming Events

PLUG Security meeting topic for Aug 15th

Published: 08 August 2019

Gavin Klondike: Machine Learning for Security Analysts

Description:
Today, over a quarter of security products for detection have some form of machine learning built in. However, “machine learning” is nothing more than a mysterious buzzword for many security analysts. In order to properly deploy and manage these products, analysts will need to understand how the machine learning components operate to ensure they are working efficiently. In this talk, we will dive head first into building and training our own machine learning models using the 7-step machine learning process.

Biography:
Gavin is a senior consultant and researcher who has a passion for network security, both attack and defense. Through that passion, he runs NetSec Explained; a blog and YouTube channel which covers intermediate and advanced level network security topics, in an easy to understand way. His work has given him the opportunity to be published in industry magazines and speak at conferences such as Defcon and CactusCon. Currently, he is researching into ways to address the cybersecurity skills gap, by utilizing machine learning to augment the capabilities of current security analysts.

Topics for Aug 8th's meeting

Published: 05 August 2019

We've got 2 presentations this month "Shell Scripting for everyone" and "Replacing netstat sockets using ss"

Dhruva Lokegaonkar: Shell Scripting for everyone

Description:
An introduction to Shell scripting.
- The basics of stringing together various commands
- Pipes and Parallelization
- Conditionals and Loops
- How to use these things to create useful scripts, like creating basic website generators, background switches, keyboard hotkeys, etc.

Biography:
Dhruva is a ASU Computer Science Freshman. He's been using Linux for the past 5 Years. He's been involved with the Indian Linux Users Group Bombay (ILUG-BOM) in their mission to introduce Linux to High School and College students by making it a default in the Indian Curriculum.


der.hans: Replacing netstat sockets using ss

Description:
"Netstat prints information about the Linux networking subsystem."

goto tool net info tool since the beginning of EPOCH

obsolete for years

ss replaces netstat's socket capabilities

Biography:
der.hans is a Free Software, technology and entrepreneurial veteran. He is a repeat author for the Linux Journal with his article about online privacy and security using a password manager as the cover article for the January 2017 issue.

He's chairman of the Phoenix Linux User Group (PLUG), BoF organizer for the Southern California Linux Expo (SCaLE), and founder of the Free Software Stammtisch and Stammtisch Job Nights.

Currently a Customer Data Engineer at Object Rocket. Most likely anything he says publicly was not approved by $dayjob.

He often presents at large community-led conferences (SCaLE, SeaGL, LFNW, Tübix) and many local groups.

https://floss.social/@FLOX_advocate
https://mastodon.social/@lufthans

PLUG Security meeting on 7/18

Published: 11 July 2019

At this month's PLUG Security meeting:
Donald McCarthy: passiveDNS For fun and Profit (part1)

For more information:
http://phxlinux.org/index.php/meetings/20-plug-security.html

Description:
If you DNS infrastructure has a bad day, your network has a bad day. If your DNS infrastructure has a good day, something else is bound to go wrong. PassiveDNS generally wont help you fix either.

PassiveDNS is a historical look at observed DNS queries over time. It is akin to The Internet Archive's Way Back Machine, but for DNS zones. Its utility as an operations and security tool is valuable and not easily replaced by another type of data.

In this presentation we will cover exactly what passiveDNS is and isn't, passiveDNS architecture, some security use cases, and if time allows some live demonstration.

In part 2 of the presentation (another month) I will demonstrate some passiveDNS tooling and more in depth practical knowledge to turn theoretical use cases into automated assistance for a SOC or NOC.

About Donald:
Donald "Mac" McCarthy is a 15 year veteran of the IT industry with the last 8 years focused on InfoSec. He has worked on a variety of different systems ranging from cash registers to super computers. It was while serving as a systems administrator for a scientific computing cluster that he discovered his passion for using linux for highly distributed complex tasks. His current focus is using linux with open source technologies like kafka and elastic search to build tooling for security analysts and network operations. He is a proud Veteran of the United States Army and recently relocated from Atlanta to the East Valley.

PLUG meeting on Jul 11th

Published: 08 July 2019

We'll have 2 presenters this month with a distribution theme.

Update: The speaker for the Red Hat talk has changed from Artemii Kropachev to John DeFrees.  Also LI9, the company behind the Red Hat talk will be providing pizza for the meeting.

John DeFrees: Red Hat Enterprise Linux 8 Beta 1 Overview

Description:
Learn about the first version release of Red Hat Enterprise Linux in over four years. The latest release features unprecedented ease of deployment, ease of migration, and ease of management enabling you to upgrade existing customers and attract new ones.
Red Hat Enterprise Linux 8 gives organizations a stable, security-focused, and consistent foundation across hybrid cloud deployments—and the tools they need to deliver applications and workloads faster with less effort.

About John:
Solutions Architect with over 15 years of hands-on experience. Experienced in
both pre-sales and post-sales customer interactions from Developer to C-level.

Established track record of working with partners and customers to sell, deploy
and support virtualized solutions. John has worked with hyper-converged
appliances, servers, networking and storage (SAN, NAS and object - physical &
SW-defined) as well as business continuity solutions including backup and
recovery.



der.hans: Hey Buster! Debian 10 released

Description:
Debian 10 brings with it many ch-ch-changes.

Reproduciable Builds, Wayland, AppArmor, nftables, cups.

10 hardware architectures, 59000 packages, 28,939 source packages, 11,610,055 source files, and 76 languages.

Stretch updates.

Get or upgrade to Debian 10 now.

Coming soon on Blu-ray.

About der.hans:
der.hans is a Free Software, technology and entrepreneurial veteran. He is a repeat author for the Linux Journal with his article about online privacy and security using a password manager as the cover article for the January 2017 issue.

He's chairman of the Phoenix Linux User Group (PLUG), BoF organizer for the Southern California Linux Expo (SCaLE), and founder of the Free Software Stammtisch and Stammtisch Job Nights.

He often presents at large community-led conferences (SCaLE, SeaGL, LFNW, Tübix) and many local groups.

https://floss.social/@FLOX_advocate
https://mastodon.social/@lufthans