Category: Conference

Discount Ends Tonight & Sell Out Risk High!

March 14, 2014
AnnouncementConference

Just under 10 hours left to get RVAsec tickets at half off–only $50!

And if that’s not enough incentive to purchase your tickets early, and you still want to attend you better think about pulling the trigger soon. We have already sold approximately 75% of all available tickets for the event!

Don’t forget all the things you get with registration, including 2 full days of talks, parking, meals, snacks, drinks, reception, prizes, a capture the flag contest, t-shirt & swag!

So, to recap, we are closing in on selling out already and the conference prices are as follows:

  • $50 discounted price until 3/14
  • $100 regular price until 5/16
  • $150 late registration until 5/30

 

Register now!

 

David Kennedy to Keynote RVAsec!

March 10, 2014
AnnouncementConference

We are pleased to announce that David Kennedy will be keynoting RVAs3c 2014!

dave-kennedyDavid is the Founder and Principal Security Consultant for TrustedSec, who provides information security consulting services for a large portion of the Fortune 1000 space as well as medium-sized companies. Prior to TrustedSec, David was a Chief Security Officer (CSO) for Diebold Incorporated, a Fortune 1000 company located in over 80 countries with over 16,000 employees. David developed a global security program that tackled all aspects of information security. David is considered a thought leader in the security field and has presented at over three hundred conferences worldwide.

David has had numerous guest appearances on Fox News, CNN, CNBC, Huffington Post, Bloomberg, BBC, The Katie Show, and other high-profile media outlets. David is the founder of DerbyCon, a large-scale information security conference. David has testified in front of Congress on multiple occasions on the threats we face in security and in the government space.

David also co-authored Metasploit: The Penetration Testers Guide, which was number one on Amazon in security for over a year. David was also one of the founding members of the “Penetration Testing Execution Standard” (PTES). PTES is the industry leading standard and guideline around how penetration tests should be performed. David has had the privilege to speak and keynote at some of the nations largest conferences.

David is the creator of several widely popular open-source tools including “The Social-Engineer Toolkit” (SET), Artillery, and Fast-Track. David has also released several zero-day exploits and focuses on security research. David has over 14 years of security experience, with over 9 specifically in security consulting. Prior to the private sector, David worked in the United States Marines for cyber warfare and forensics analysis activities.

David also recently testified before the US Congress about the security of the healthcare.gov web site.

RVAsec CTF: What to expect this year!

March 4, 2014
AnnouncementConferenceCTF
Last year RVAsec had its first CTF and it was a huge success.   The team has been planning to make the event this years even better and have a lot in store.  We caught up with Chris Gerling to get some information on what to expect this year.
(RVAsec) The CTF was aimed to be a bit of a different take than normal and huge hit at last year’s at RVAsec. Can you tell us a little about it?
Chris: We wanted to build an “Everyman” CTF, which allowed people from all skill levels and professions to participate and learn. Our goal was education, and to give people a platform for that to happen on. The trick was balancing easy challenges with medium and very difficult as well, giving everyone a challenge without making them feel too confused. We believe it worked very well.
(RVAsec) How many people participated? How did the RVAsec attendees do with the CTF?
Chris: 37 people ended up participating and nearly all scored on at least one challenge. It was really awesome to see people learning and solving problems, and even surprising themselves with what they could figure out.
(RVAsec) What were some things that you learned from last year?
Chris: We learned that the registration process needs to be cleaner, and we need to do a better job of keeping track of people for giving our prizes. It’s also going to be beneficial to have the event more organized with goals we want to hit in terms of announcements, at every stage of the event.
Hardware wise, we’re using a smaller machine that doesn’t weigh as much. The AP we used, which was a WNDR4500 held up well, but we’re going to augment that this year and look into providing wired access.
(RVAsec) What are the plans for the CTF this year?
Chris: We plan on offering a similar style CTF, with a tiered approach. Possible additions are a more robust story line, and a free 1 hour seminar for brand new participants who have never done a CTF before.
(RVAsec) If someone wanted to participate, what would you recommend they do to prepare?

Chris: There are a plethora of tutorials available on youtube and securitytube. There are also challenges available at https://www.honeynet.org/challenges that are really great to learn on.  Getting familiar with tools like Wireshark, and basic command line usage in a distribution such as Kali Linux will be very valuable.  From a DFIR standpoint downloading and learning the SANS SIFT workstation is also one way to learn forensics tools.

(RVAsec) Can you give attendees any hints or teasers about the CTF?
Chris: Only if you bring us some beer. 😉  We’ll actually be releasing some teasers once we’ve got more content built out in the coming weeks!
(RVAsec) How do people sign up to participate?
Chris:  You can register for the CTF when you purchase your ticket for RVAsec, or directly on the SecuraBit web site.

(RVAsec)  Do you need any help?  If so, what and how can people or companies help out?
Chris: We can always use help in creating this. We’re really ramping up over the next few weeks and starting to build things. If you want to build a challenge, or have any content at all you want to contribute, we definitely need that. If you’re really motivated and want to push on us all to do the best job we can, we’d love to have you on the team.

Sponsors are welcomed if any want to donate prizes to give away. We will give you a shout out and display your logo on the scoreboard.
(RVAsec) Anything else?
We can’t wait to see people learn again, and are very grateful to have a place to put this event on in RVAsec!  If you want to get involved, have questions or want to sponsor please contact us at ctf@securabit.com

Training: Networking for Pentesters

February 20, 2014
AnnouncementConferenceTraining

We are pleased to announce that Rob Fuller (Mubix) will be teaching Networking for Pentesters. The class we be held on Thursday, June 4th before the conference and will cost $199.95.

Training classes are held on Thursday, June 4th, before the conference.  This class will cost $199.95.

Networking for Pentesters

This is an introductory class into specific protocols and technologies
that are used on corporate networks around the world, focusing on the
point of view of an attacker. This class will cover things like how DNS, HTTP, SMTP and other basics of networking, then move on to “Layer 7” with
IIS/Sharepoint, VPNs, Windows Active Directory, and Unix services.

For more information on the class and the instructor, or to register, please see:

http://rvasec.com/training/

RVAsec tickets on sale now for $50

February 20, 2014
AnnouncementConference

Not $100!The base ticket price for RVAs3c is $100. However,  until 3/14 all registrations will be half off–only $50!

For the last two years RVAsec has brought the best speakers to Richmond, kept attendees fed and watered, and ensured everyone had a great time for the lowest possible cost. Despite selling out both conferences, the large number of late registrations is a serious problem and adds to conference costs. So this year we are trying something different & raising the base price a little, but offering a deep discount to encourage early registration,

And if that’s not enough incentive to purchase your tickets early, late registrations (after 5/17) will be $150!

Don’t forget all the things you get with registration, including 2 full days of talks, parking, meals, snacks, drinks, reception, prizes, a capture the flag contest, t-shirt & swag!

So, to recap the conference prices:

  • $50 discounted price until 3/14
  • $100 regular price until 5/16
  • $150 late registration until 5/30

Once again there will be no tickets sold at the door, and don’t forget that RVAs3c has sold out every year–so don’t wait!

Register now!

 

RVAsec 2014 CFP is now open!

November 18, 2013
AnnouncementConference

The call for papers for RVAsec 3 is now open!

Conference: June 5-6th, 2015

Location: Richmond, VA

CFP Submission Deadline: February 14th, 2014 at 11:59 PM Eastern

RVAsec is a Richmond, VA based security convention that brings top industry speakers to the midatlantic region. In its second year, RVAsec 2013 attracted 265 security professionals from across the country. For 2014, the conference is a two day and dual-track format, with a mixed focus on technical and management/business presentations.

All talks must be 55 minutes in length, and submissions will need to select either technical or business/management tracks.

Join us and enjoy the perks!

For more information and requirements, or to submit, please visit:

http://rvasec.com/2014-cfp/

If you are interested in running a training class on June 4th, please email us at info@rvasec.com with the following information:

1) Title Of Class
2) Overview of Class:
3) Instructor:
4) Instructor Bio:
5) Class Size:
6) Student Prerequisites:
7) Proposed Cost / Amount Required Per Student:

RVAsec 2014 – June 4-6

October 24, 2013
AnnouncementConference

RVAsec 2014 will be held on Thursday and Friday, June 5th and 6th at the Commonwealth Ballroom at VCU’s University Commons. Training classes will be held on Wednesday, June 4th.

CFP information will be coming shortly!

RVAsec 2013 Slides Posted!

June 11, 2013
Conference

Slides from RVAsec 2013!

Alex Hutton – Keynote Chris Wysopal – Keynote
Donald Allison – Observations on the (Mostly)Inadvertent Effect of Data Management on International Cybercrime Investigations Rockie Brockway – Business Adaptation or: How I Learned to Stop Worrying and Love the Internet’s Unclean Conflicts
Colby Clark – The Digital Battlefield Gus Fritschie & Andrew Du – How to defend against FISMA
Adam Ely – BYOD: Risks, Maturity, and Solutions Dan Han – SIEM implementation: What to expect
Dan Holden – DDoS & Modern Threat Motives Itzik Kotler – Hack Like It’s 2013
Barry Kouns – Risk Assessment — The Heart of Information Security
 Brian Lockrey – Social Media Digital Forensics
Sean Mason – A Day in the Life of an Incident Responder at a Fortune 5 Daniel Ramsbrock – Web Application Vulnerabilities and Solutions
Mike Shema – JavaScript Security & HTML5 Jericho – Our Straw House: Vulnerabilities
Ben Tomhave – Interesting Times: Will Business Survive? Schuyler Towne – Vulnerability Research Circa 1851
Paul Watson – Cross-Platform Network Access Control

 

Surveys, Slides, Videos and more!

June 5, 2013
AnnouncementConference

RVAsec 2013 is over and we are very pleased with how everything turned out!  It was an aggressive move to grow the way we did this year, but we heard your feedback loud and clear, and you demanded more!

The first year RVAsec was a 1 day single track conference that attracted approximately 170 attendees.  This year, we grew to 2 days, 2 tracks and had over 265 attendees!

Some thanks are in order for:

  • Our brilliant keynote speakers Alex Hutton and Chris Wysopal
  • The amazing speakers that shared their time and knowledge!
  • All of the trainers for providing affordable classes to the RVA community
  • Hack.RVA for once again making awesome badges
  • Hope and VCU for all of their support and the facility
  • All of the volunteers for donating their time to ensure everything was in order
  • The sponsors for making it possible to put on the conference
  • Rapid7 for the after party
  • Create A Print & Sign for the shirts
  • The CTF team for putting on an amazing event
  • And of course to everyone that attended RVAsec 2013!

 

We are in the process of cleaning up some loose ends to wrap up RVAsec 2013.  Here are a few other quick updates:

  • Attendee survey will be out soon–we need your feedback to make RVAsec 2014 even better, so please take a few minutes to complete it
  • Training feedback survey has been sent to all attendees
  • Slides will be posted soon
  • We will be starting post processing on video in the coming days and will have them ready as soon as possible.

 

If you have any questions please contact us!