Search Results for "2012"

2012 Conference

Archived web site for RVAsec 2012 can be viewed here

All of the RVAsec 2012 conference videos are online and available for viewing at RVAsec’s YouTube channel.

Slides:
Marcus Ranum – Keynote: The Easy Stuff is Done
Adam Ely – Managing Security Within The Cloud
Carsten Eiram – Code Maturity: Is SDL a Waste of Time?
Travis Altman – Reverse engineer an obfuscated .Net application
Tim Elrod – I’m not a Doctor But I Play One On Your Network
Schuyler Towne – Why Do You Lock Your Door?
Chris Gerling – Don’t be a Cog in the Wheel!
Salvador Grec – PHP Website Security, Attack Analysis, & Mitigations
Jericho – Errata Hits Puberty: 13 Years of Chagrin

RVAsec 14 Speaker Feature: Philippe Caturegli

May 2, 2025
Speaker

Philippe Caturegli has over 25 years of experience in building, defending, and attacking across all areas of Information Security. He’s been performing penetration tests since the early 2000s, gaining deep expertise across diverse security landscapes. In 2012, he founded Seralys, a boutique cybersecurity company specializing in high value add penetration testing engagements, serving clients in both Europe and North America. Before Seralys, Philippe was a Senior Manager at a Big 4 firm in Luxembourg, where he led Security & Privacy engagements, primarily with financial institutions. Earlier in his career, he held several roles within the information system security department of a global pharmaceutical company in London, managing a heterogeneous network of over 100,000 users under strict regulatory requirements.

X (Twitter): @_titon_

Internal Domain Name Collision 2.0 (<– add to your schedule)

The proliferation of new Top-Level Domains (TLDs) has sparked security concerns primarily around phishing and social engineering attacks. However, the emergence of these new TLDs has broadened the attack surface, making it easier for threat actors to exploit other domain-related vulnerabilities. Our research explored another critical but often overlooked vulnerability: Internal Domain Name Collision. During our research, we examined how legacy systems configured before the TLD boom can become susceptible to these collisions, potentially allowing threat actors to redirect or intercept sensitive internal traffic. This vulnerability can have a ripple effect, impacting even newly installed systems that rely on configurations from those legacy systems (e.g. DHCP, DNS Suffix, etc.). This presentation will showcase our methodology for identifying vulnerable domains and present real-world examples of high-value targets at risk, including a major European city, a US Police Department, and critical infrastructure companies.

Come see Philippe Caturegli at RVAsec 13!

Carmax – RVAsec 13 Gold Sponsor

March 29, 2024
Sponsors

RVAsec is pleased to present Carmax as an RVAsec 13 Gold sponsor!

Carmax

https://www.carmax.com/
X (Twitter): @carmax

RVAsec 13 tickets are available now!

RVAsec 2023 Videos: Adrian Amos & Rick Lull

August 31, 2023
Videos

Adrian AmosAdrian Amos

Protecting identity is foundational to zero trust, and everybody wants passwordless, but is it always appropriate? If it is, how do we overcome barriers to success, and if it isn’t, how do we protect & isolate workloads to ensure the right people have the right access to the right apps & data? Any security approach must consider the human beings it’s designed to protect, while balancing the risks of authentication strengths.

About Adrian – I’ve supported the Richmond IT community since 1997, in every capacity from retail break/fix to military & corporate Wintel infrastructure. I transitioned to cloud solutions in 2010 and was the first technical hire at Synergy way back in 2012. I have a strong focus on identity & access management and collect terribly inconvenient hobbies.

Rick LullRick Lull

Taking the Network 101 presentation in 2019 a bit further, this talk will dive into network security aka technical security controls that should be considered with respect to risk management in common environment, including private/public cloud and the recent industry buzz words around ZTNA – Zero Trust Network Access.
If you have ever wondered how you might use a VRF to segment authenticated user traffic, this is a talk for you. If you are trying to cut through buzzwords that a sales guy is throwing your way about how to protect your remote workers, this is a talk for you.

About Rick – Lifelong geek turned security consultant after stops as a desktop tech, server bubba, and network jockey. Rick is a healthcare IT survivor, and is now playing Horatio on the bridge for hire with a local technology consulting company, advising clients on security strategy and operations. He currently holds CISSP, CCNP-Security, NSE7 and NSE4 certifications and previously held CEH and CNA certifications. He has promised to not make fun of any manufacturers during his talk.

Speaker Feature: Adrian Amos

Adrian Amos
April 26, 2023
Speaker

Adrian Amos:
I’ve supported the Richmond IT community since 1997, in every capacity from retail break/fix to military & corporate Wintel infrastructure. I transitioned to cloud solutions in 2010 and was the first technical hire at Synergy way back in 2012. I have a strong focus on identity & access management and collect terribly inconvenient hobbies.

Twitter: @ahamos

I <3 my password

Protecting identity is foundational to zero trust, and everybody wants passwordless, but is it always appropriate? If it is, how do we overcome barriers to success, and if it isn’t, how do we protect & isolate workloads to ensure the right people have the right access to the right apps & data? Any security approach must consider the human beings it’s designed to protect, while balancing the risks of authentication strengths.

Come see Adrian at RVAsec 12!

RVAsec 2023

Gold Sponsor: Carmax

June 8, 2022
ConferenceVendor

RVAsec is happy to announce Carmax as a Gold level sponsor for RVAsec 11!

Carmax

CarMax, the nation’s largest retailer of used cars, is proud to call Richmond our home town. For over 25 years, the city has embraced our disruptive business model to change the way Americans buy and sell used cars. Richmond has provided us with exceptional talent to fuel our growth. Our associates are passionate about sharing their time, talents and resources to make Richmond a vibrant place to live, work, and play. CarMax is proud to be recognized as one of the Fortune 100 Best Companies to Work For®.

https://www.carmax.com

Twitter @CarMax

Gold Sponsor: Carmax

October 25, 2021
Sponsors

RVAsec is happy to announce Carmax as a Gold level sponsor for RVAsec 10!

Carmax

CarMax, the nation’s largest retailer of used cars, is proud to call Richmond our home town. For over 25 years, the city has embraced our disruptive business model to change the way Americans buy and sell used cars. Richmond has provided us with exceptional talent to fuel our growth. Our associates are passionate about sharing their time, talents and resources to make Richmond a vibrant place to live, work, and play. CarMax is proud to have been recognized for 16 consecutive years as one of the Fortune 100 Best Companies to Work For®.

https://www.carmax.com

Twitter @CarMax

Speaker Feature: Jeff Tehovnik

October 15, 2021
AnnouncementConference

Jeff has been working in IT since 1998 and graduated from Virginia Commonwealth University (BS-IS 2012, MS-CISS 2014) and the SANS Technology Institute (PGC Ethical Hacking & Penetration Testing). Jeff also enjoys research and educating on Technical Information Security Topics including Network Security Monitoring and Advanced Persistent Threats. In addition to recently passing the CCSP exam, Jeff holds the CISSP, GCIH, GPEN, GWAPT, GXPN and VMware NSX: Micro-Segmentation certificates.

When he’s not delving into the cloud, Jeff enjoys Reading, Fishing, and Vacationing at the beach with his wife and kids.  He is also an avid Hockey Fan.

Infrastructure as Code: Theory and Concepts

Information Systems Engineering & Operations Personnel can realize Scalability and Consistency by leveraging Infrastructure as Code.  This presentation will dive into the Theory of Infrastructure as Code and the Concepts on effective use.  A pathway to CI/CD, and eventually DevOps, will be shown.

Come see Jeff at RVAsec! Register now.

Gold Sponsor Feature: Carmax

February 19, 2020
AnnouncementConference

www.carmax.com

@CarMax

CarMax, the nation’s largest retailer of used cars, is proud to call Richmond our home town. For over 25 years, the city has embraced our disruptive business model to change the way Americans buy and sell used cars. Richmond has provided us with exceptional talent to fuel our growth. Our associates are passionate about sharing their time, talents and resources to make Richmond a vibrant place to live, work, and play. CarMax is proud to have been recognized for 16 consecutive years as one of the Fortune 100 Best Companies to Work For®.

Come see us at RVAsec. Register now!

After Party 2019 proudly sponsored by Guidepoint and Risk Based Security

April 24, 2019
AnnouncementConferenceEvent

We are very pleased to announce that Guidepoint and Risk Based Security have partnered up again to host our After Party event this year. Planning is in the works so stay tuned for further information!

Risk Based Security

 

RVAsec 2019. Register Now!