CSides Monthly Security Meetups

CSides Monthly Security Meetups provide an opportunity to listen to and share security research within the Canberra region. The meeting occurs normally on the 2nd Friday of every month. Each meetup consists of 1-2 talks of around 30 mins each. Talks start at 6pm and are followed by some socialising at a local pub.

New attendees are welcome, just come along! (There are no entry fees, and no tickets to book)

The talks at CSides are technical. CSides welcomes new and interesting speakers to present - the topic will be on a technical or security issue. As a speaker you can be an expert, a student, someone learning a new area or maybe a regular speaker on the conference circuit, but we also love to have new and occasional speakers. Please contact one of the organisers below if you are interested in speaking.

You are very welcome to propose running activites other than talks, such as hands-on workshops, an infosec quiz or something else relevant to our techie audience!

Location:

Canberra Rex Hotel
150 Northbourne Ave

Braddon ACT 2612

Time:

6.00pm

Afterwards:

Swan & King Bar
Canberra Rex Hotel

Organisers:

Kylie McDevitt
Silvio Cesare

Future Dates:

9th February 2024

TBA

15th March 2024

TBA

12th April 2024

TBA

10th May 2024

TBA

7th June 2024

TBA

Friday 10th November 2023

Talk 1: How to best fuzz network services in embedded devices?

This research question is something we’ve tackled under a research grant provided by Defence Science and Technology Group (DSTG). Network services can be challenging. Traditional fuzzers deal well with testing file parsers but struggle to fuzz network programs.

We’ve built 3 sets of harnesses to fuzz test a variety of services:

1. when we have the network service source code
2. when we have only the firmware and the service is dynamically linked
3. when we have only the firmware and the service is statically linked

Come to this talk and see our unique approaches to fuzz test harnessing.

Dr Silvio Cesare

Dr Silvio Cesare is the CTO and a Managing Director at InfoSect. He has worked in technical roles and been involved in computer security for over 20 years. This period includes time in Silicon Valley in the USA, France, and Australia. He has worked commercially in both defensive and offensive roles within engineering. He has reported hundreds of software bugs and vulnerabilities in Operating Systems kernels. He was previously the Director for Education and Training at UNSW Canberra Cyber, ensuring quality content and delivery. In his early career, he was the scanner architect and a C developer at Qualys. He is also the co-founder of BSides Canberra - Australia’s largest hacker conference. He has a Ph.D. from Deakin University and has published within industry and academia, is a 4-time Black Hat speaker, gone through academic research commercialisation, and authored a book (Software Similarity and Classification, published by Springer).