ISSSP (www.isssp.org.ph)
My apologies for plugging. First, I'm representing ISSSP (Information Systems Security Society of the Philippines) a non-profit, non-stock organization with the objective of raising the awareness and promote information secuirity. Very soon, we will be offering training and certifications for individuals and organizations. ISSSP's founders are from our company I-Sentry, Bancnet, Megalink, Sun Microsystems, AMA, Siemens, TIM, IT Professionals and Security Consultants.
911
Last year, we had the first annual 911 IT Security conventions attended by 273 participants, 20 sponsors, 7 foreign security specialists (CISSPs) and local security specialists. The 911 event was more for the IT executives and high-level technical guys. We discussed Risk Management, Risk Assessment, IDS, Firewalls, Access Mangement, Diaster Recovery, PKI and others. Unisys, CA, E&Y, Symantec, Fujitsu, I-Sentry, Micro-D, Stonesoft, Globe, Microsoft, Sun and 8 other sponsors participated.
This coming May7-8 (and there's a big chance to extend to May 9), we will be holding the first Hacking Convention (the good guys) at the Manila Intercon dubbed as:
Manilacon at the Intercon: Know thy Enemy
www.issssp.org.ph
This is ala Defcon (www.defcon.org) convention with hacking/security topics, hacking contests, demo and PARTY. This has been planned for almost 2 years but due to work and other commitments, it dragged and now it's final. There are 5 confirmed foreign security specialists and professional hackers from Germany, Netherlands, UK, Canada, US and Vietnam. 3 THC (www.thehackerchoice.com) will be coming to introduce their new tool here in the Philippines (ahead of defcon). These are guys who have spoke at either DEFCON or BLACKHAT. Among those who have verbally confirmed are K2 (URK Author), Van Hauser (THC), Skyper (THC), RD (THC), Soap (SecurityFriday).
About 4 Information Security Specialists from CA, Symantec will also be coming to share their knowledge in hacking and security.
TOPICS
Topics are generally very technical (hence, all PLUG members are qualified) such as Securing and Breaking Windows, Linux and Solaris, Open-Source Security (we might need more speakers from your group on this topic) and others (see sample topics at the bottom of this email from foreign speakers). We have the 2-day single track session but due to the number of potential attendees and also, to the topics and speakers, there might be another parallel track on a smaller function room. The ballroom can only handle around 500-600 attendees comfortably.
WHO
Security and IT companies are supporting the event such as Symantec(convention chair), CA(platinum sponsor), Sun, I-Sentry, Eastern Telecoms, Yehey to name a few. We've also asked the help and collaboration with PCS and JPCS, sysads.org, Digital Filipino, IT Foundation of the Philippines, ISACA, ph-CERT (calling abet), NSC and other IT/govt organizations. We are expecting IT security professionals, admins, risk auditors, compliance managers, IT managers and other IT professionals.
CONTESTS/DEMO
There are 2 pre-con contests - will be announced on April 1. During the con, there will be hacking contests, war-games and demos. I believe there will be several demo/test/contest servers that includes Solaris, Linux, BSD,Win2k and maybe if we're luck we can road-test apple's Xserve. After the con, there will be a contest for next year's Manilacon04 logo and slogan.
INTERNET/NETWORK
Eastern is (not yet officially) putting up an E1 or T1 and also a Wi-Fi network. We strongly encourage you to bring your notebooks with Wi-Fi cards. There will be available Wi-Fi cards to be rented (for free, i think) but their will be a deposit. There are several servers that will be used for hacking contests/demo. We can invite 1 or 2 of your PLUG representatives to secure the Linux boxes.
FINAL DETAILS
You can check the website for the con updates but the final details, brochures and other stuff will be formally out by April 1. You can email us
MEMBERSHIP
Please call the ISSSP Secretariat at 8124704 or 09174664938.
REGISTRATION (http://www.isssp.org.ph/register.htm)
For potential PLUG attendees, maybe we can arrange a special discount. May I know who's the right person to talk to? Or pls.email our secretariat (Ellen Almazon) [EMAIL PROTECTED] or call/fax at 8124704 or 09174664938.
Or you can DL the Registration Form here:
http://www.isssp.org.ph/registration_form.doc
Thanks and hope to see you there.
Francis
PS: TOPICS
Presenter: Skyper Title: Hacking the human mind - the last frontier of Social Engineering Desc: This talk will showcase how person can be tricked into doing certain things they would not under normal conditions. Real-world examples will be provided, ranging from convincing administrators of giving out root password of the mainframe computer to bypassing security checks of military controlled buildings. Presenter: Skyper Title: HTTPS - HyperTextTransferProtocolSillyness Desc: The Root Certification Authorities (VeriSign, Twathe, RSA, ...) manage the trust on the internet. This talk will give an insight view how flawed the trust model is and how blindly online shops, banking system and web sites around the globe trust their professionality - and paying for it. After this talk will the audience understand why basicly everyone could impersonate microsoft.com or exploiting other weaknesses in the Root CA trust model. (This is not about Man-in-the-middle-attacks from yesterday). Presenter: van Hauser Title: Automatic protocol identification Desc: When performing penetration tests, one usually stumbles about rare and weird protocols, or services bound to unusual ports. To automate the identification process of this, DJ RevMoon & vh/THC wrote the tool amap. The presentation will be about how amap works, the new features (which will be in a new version made available at the Conf), statistics gathered and live demonstration. It is able to automatically e.g. detect a bound rootshell on port 9000 with an SSL frontend, Oracle Listener on port 12, etc. Presenter: van Hauser Title: Global Intrusion Tracing Tool Desc: The "Global Intrusion Tracer" is a new - and yet unreleased tool by vh/THC, which enables administrators, to identify the attack paths of an intruder, if a special software is running at the ISP he is dialing-in, also if he routes his attacks via servers and encrypts the traffic in between. Is is done by correlating time differences of packets of intruders action being received at the target, and comparing them (adding some fuzzy logic) on a gathering deamon at various ISP sites. Full privacy protection and data encryption of innocent surfers is achieved. Presenter: RD Title: Advanced kernel keylogger Desc: Will talk about the advanced linux kernel based keylogger approach and present the next release of thc-vlogger 1.1 (thc-vlogger was first released in an article on Phrack Magazine #59 last June - http://www.phrack.org/show.php?p=59&a=14). The new release will have features such as the capability to log keystrokes of user sessions on console (ttyX), via serial port (ttySx) and remote sessions such as telnet/ssh (ptsX); user session hijacking; remote logging; automatic password prompt detection, ... There is also a plan to add the session playback feature.
-- C Francis Pineda I-Sentry Solutions Inc. www.isentry.ph
D (+632)-7511206 T (+632)-7503652 to 55 F (+632)-7503654 M (+63918)-3457654 I 93118193 E [EMAIL PROTECTED] U www.isentry.ph P www.isentry.ph/~francis/cfrancis.pgp ------------------------------------------------------ The information in this email is confidential and may be legally privileged. It is intended solely for the addressee. Access to this email by anyone else is unauthorized. If you are not the intended recipient, any disclosure, copying, distribution or any action taken or omitted to be taken in reliance on it, is prohibited and may be unlawful. When addressed to our clients any opinions or advice contained in this email are subject to the terms and conditions expressed in the governing ISSI client engagement letter. -------------------------------------------------------
