DEFCON 201 Hacker Happenings — September 12th to September 17th

Besides our normal meet up, here are some hacker and STEM activities this week in the 201 New Jersey and Adjacent NYC Area:

— NYC.rb — Reflection in Ruby 🎤 Building a Background Job Processor—

Date: Tuesday, September 12th

Location: XO Group ( 195 Broadway, 25th Floor, 10007, NY), 24th Floor

Time: 7:00 PM to 9:00 PM

Link: https://www.meetup.com/NYC-rb/events/235117573/

Reflection in Ruby: Understanding The Implications of Loading Gems and Files

This talk describes ways to use Ruby’s reflection capabilities to analyze what is available in the runtime:

• Introduction to Ruby methods for detecting available classes and methods

• Detecting classes and methods made available by requiring a gem

• Detecting direct modification of existing behavior (via monkey-patching)

• Detecting indirect modification of existing behavior (module inclusion)

•Recommendations for further exploration of the topic

Paul Stefan Ort is the lead engineer for Dependable, a bot that automates dependency updates for Ruby applications.

Building a Background Job Processor from scratch in Ruby

What is a background job processor? How does it work? Working with Rails, and using background job tools (such as Sidekiq) left me with these unanswered questions… As a remedy I decided to build one from scratch! What better way to learn and understand than by doing?

In my presentation I will talk about the following topics:- building a background job processor from scratch- working with concurrency and parallelism- performance considerations of multithreading vs creating multiple processes- what queueing system to use and why- the different ruby implementations and their impact on such a tool

The project and the presentation are still in the works so I will be ready to present for the Meetup happening the 12th of September!

Antoine is a Software Developer who mainly works with Ruby and JavaScript. He loves going by the ocean and ride on waves, whether it’s by surfing, kitesurfing or windsurfing. Oh, and he also fosters kittens from the ACC until they’re of age of being adopted!

— Bergen Maker Space Open Night—

Date: Wednesday, September 13th

Location: 190 Hackensack Ave, Hackensack, NJ 07601

Time: 5:00 PM to 8:00 PM

Link: https://www.meetup.com/Bergen-Makerspace/events/243141267/

Do you have a 3D printing, laser cutting or electronics project that you would like to work on? Come visit the Bergen Makerspace for an open build night. ***If you do not have your own equipment we will have Arduino equipment that you can borrow as well as soldering irons and other basic tools. Laser cutting is available for an additional fee.

—OpenShop at JC Fab Lab! —

Date: Wednesday, September 13th

Location: JC FabLab (195 New York Ave., 4th Floor, Jersey City, NJ)

Time: 7:00 PM to 9:00 PM

Link: https://www.meetup.com/JC-Fab-Lab-Art-Design-Fabricate-Collaborate-Learn/events/242356333/

Please be our guest at our OpenShop at JC Fab Lab! Bring a project idea, or, even a project in progress to share with the group or collaborators.

Get the nickel tour of The Lab… we have a 2000sq. ft shop with

• traditional woodshop tools

• basic metal-working tools (including a MIG welder)

• Epilog Fusion 40 laser cutter / engraver,

• Shapeoko2 CNC Mill (1000mmx1000mm)…

• 4 color screen printing station

• Puma III Vinyl Cutter

and more!

Meet potential collaborators.

Find out about the resources, workshops, and upcoming events at JC Fab Lab.

—HACK NYC @ BlackRock —

Date: Thursday, September 14th

Location: BlackRock (55 East 52nd Street New York, NY 10022)

Time: 6:00 PM to 9:30 PM

Link: https://www.eventbrite.com/e/hack-nyc-blackrock-registration-36857107601

Session 1

Micro Segmentation, Contextual Analysis and Automation

Most security products focus on “chasing threats”, either using some form of signature or behavioral models to find malicious indicators. Given the recent level of security incidents it’s clear that model has many flaws. We believe a far more effective model is to start with a well understood intended state for data center applications, and then enforce or monitor that runtime behavior does not deviate from the intended state.

Much like micro-segmentation enables “least privilege” environments at a network level, AppDefense enables “least privilege” compute environments (what runs, how those components interact, etc.)

Session 2

What I Have Learned from Watching Fools with Tools, A Journey Into AppSec Failures

The key to a successful app sec program is learning from others and your own mistakes. This subject matter experts discusses the people, process & technologies to building that program. We’ll start off with threat modeling, learn effective technologies (SAST,DAST,IAST,RASP) that help you make the go/no go decisions.

Session 3

The Era of Ransomware, Cyber Extortion and Nation State Attack w/Demos

Cyber extortion has reached new proportions, including ransomware attacks such as WannaCry of May 2017, and SamSam affecting major hospitals in 2016. Considering the payoff, cybersecurity experts expect these attacks to only increase. While stories made public provide limited knowledge of initial attack vector or details, this session presents real cases of cyber extortion on financial firms and high net worth individuals, including hacking techniques for full network compromise and deployment of ransomware kits. The second part of the presentation will focus on Nation state attacks from Asia with malware called PlugX, and operation Cloud Hopper that exfiltrated data from major MSP providers around the globe. Many of the cases discussed are currently under investigation by the FBI and Secret Service. Attendees will walk away from this session with knowledge of the tools and strategies needed for elevating their cyber resilience.

—All About Downtown —

Date: Saturday, September 16th

Location: Newark Avenue between Grove Street and Coles Street

Time: 12:00 Noon to 8:00 PM

Link: http://jcdowntown.org/events/street-fair

The Annual All About Downtown Street Fair began in 2011 featuring over a hundred vendors selling all sorts of products ranging from handmade jewelry to one of a kind art work, 10+ of the top Food Trucks in the tri-state area and all sorts of fun for the family. In 2015 this event brought over 30,000 into our downtown corridor with 2017 gearing up to be the best year yet!

— Defcon NYC Industrial dance party w Cervello Elettronico—

Date: Saturday, September 16th

Location: Pyramid Club ( 101 Avenue A, New York, New York 10009)

Time: 9:00 PM to 4:00 AM

Link: https://www.facebook.com/events/1430474887043834/

Defcon NYC Industrial dance party into its 8th year as
DEFCON Every Saturday night at the Pyramid Club!

Saturday 9/16/17

with only the best:
EBM,
Industrial (classic, new & rare),
Belgian New Beat :) ,
Synth &
Electro dance Traxx at DEFCON

DJs
STALAGMIKE
guests:
Cervello Elettronico (DJ) — Los Angeles
SWABBY

DJ Grave at the Bar w/ drink specials all night
Joyis w/ Pix

also, on the street level with all the New Wave 80s dance hits:
DJs TM8
Rob Xian (The Bank/Albion Batcave)

Pyramid Club
(downstairs… in the fog)
101 Avenue A (btwn 6/7th st.) NYC 10009
21+ 10pm-4am $6