It's no secret that Cybersecurity is a trending subject. The subject has always peaked my interest.
I am a member of the UofSC's Cybersecurity Club. Here I occasionally deliver informative presentations to the club on topics in security.
- I presented to the UofSC Cybersecurity club on April 11th, 2019 about the File Carving data recovery technique. Carving a JPG image from a word document is elementary in comparison to mass data recovery for investigations. This presentation was not created for this purpuse though; rather, I wanted to demonstrate the concept of Magic Numbers and file formats for data recovery.
- I attended a workshop on the Bro IDS at B-Sides Charelston in 2018. All workshop materials were given by Andrew Beard.
- In late 2018, I attended a workshop for Network Penetration Testing. This workshop was presented by Barrett Adams and Chris Myers from Ubeeri.
The workshop allowed the attendees to fully exploit a simulated vulnerability in an Apache Tomcat web server. The following steps were taken:
- Performed reconnaisance by scanning ports the ports of common services on the servers.
- Used Metasploit's auxillary module to check services for default credentials and establish a foothold in the web server.
- Used Empire (now unsupported) as a command and control (C2) framework. It helped to deploy HTTP listeners and a Powershell launcher.