Metasploit is a well-known exploit development and pentesting framework, but its power is not limited. Taking a shotgun approach to the presentation, the speakers will show attendees how to tap Metasploit to automate and simulate attacker actions, create and automate a test lab, perform network device (such as ips/ids) testing, schedule regular regression tests, train defenders, and generally how to bend Metasploit to your will. Attendees are encouraged to bring a helmet, this is a demo- and code-heavy presentation!
Joshua Smith, JHUAPL
Joshua Smith (kernelsmith) is a security engineer at the Johns Hopkins University Applied Physics Laboratory (JHUAPL) , performed penetration testing for the US military for 3 years, and is an active member of the Metasploit community.
Registration for the CISSP® Study group is now open
Registration for the ISSA Baltimore Spring 2012 CISSP® Common Body of Knowledge Study Group is now open. See the training page for details.
The primary goal of the Information Systems Security Association, Inc. (ISSA) is to promote management practices that will ensure the confidentiality, integrity and availability of organizational information resources. Information systems security is an increasingly critical aspect of information systems design and maintenance. Many organizations do not have dedicated information systems and network security personnel they have generalists many of whom are not familiar with information security practices. The ISSA is dedicated to providing resources to such people and organizations, as well as to generally raising the level of security and data privacy consciousness among information systems personnel in all organizations. The Baltimore Chapter is a local resource to be used by members and non-members alike.
To achieve this goal, members of the Association must reflect the highest standards of ethical conduct and technical competence. Therefore, ISSA has an established Code of Ethics and requires its observance as a prerequisite and continuation of membership and affiliation with the Information Systems Security Association.
