Tentative Program
The FIRST Technical Colloquium (TC) event will be held in Dec 1-2, 2009.
Please note: the program schedule is not in its final version, adjustments still can occur.
Overview
Plenary Sessions
Hands-on Session 1 (Morning)
Hands-on Session 2 (Morning)
Hands-on Session 3 (Morning)
Hands-on Session 4 (Morning)
Hands-on Session 5 (Afternoon)
Hands-on Session 6 (Afternoon)
Hands-on Session 7 (Afternoon)
Hands-on Session 8 (Afternoon)
December 1st (Tuesday) | |
|---|---|
| Plenary Sessions | |
| 09:00 - 09:15 | Opening/Welcoming Remarks CyberSecurity Malaysia & FIRST Rep |
| 09:15 - 10:00 |  State of Health of the Internet and our Networks Richard Perlotto (Shadowserver Foundation, US) |
| 10:00 - 10:30 | Networking Break |
| 10:30 - 11:15 | Threats to Our Security: Motivations and Targets Ryan Connolly (Team Cymru, US) |
| 11:15 - 12:00 |  Mahmud Ab Rahman (MyCERT, MY) |
| 12:00 - 12:45 | The Emperor's New Cloud: An Analysis of the July 2009 RoK/USA DDoS Attacks Roland Dobbins (Arbor Networks, US) |
| 13:00 - 14:00 | Lunch |
| 14:00 - 14:45 |  Julio Canto (VirusTotal, ES) |
| 14:45 - 15:30 |  New Developments on Brazilian Phishing Malware Jacomo Piccolini (ESR/RNP, BR) |
| 15:30 - 16:00 | Networking Break |
| 16:00 - 16:45 |  Case Study, Database Hack with a Twist Alex Tilley (AFP - Australia Federal Police, AU) |
| 16:45 - 17:30 |  Low Interaction Server Honeypot Evolution Mark Schloesser (Girraffe Honeynet, DE) |
| 17:30 - 17:40 | Closing / Administrative |
| 18:00 - 21:00 | Dinner (participants & speakers invited) |
| December 2nd (Wednesday) | ||||||||
|---|---|---|---|---|---|---|---|---|
| Hands-on Session 1 (Morning) | Hands-on Session 2 (Morning) | Hands-on Session 3 (Morning) | Hands-on Session 4 (Morning) | |||||
| 08:45 - 09:00 | FIRST Rep Brief opening / administrative announcements |
|||||||
| 09:00 - 10:30 | Becoming Criminal - A Botnet Exercise ShadowServer |
 Network Monitoring and Traffic Analysis Keisuke Kamata (JPCERT/CC JPCERT Coordination Center, JP) |
Jonathan Levine, Zane Jarvis (AusCERT, AU) |
Adnan Shukor, Hafiz Mat Tabrani (MyCERT, MY) |
||||
| 10:30 - 11:00 | Networking Break |
|||||||
| 11:00 - 12:30 | Becoming Criminal - A Botnet Exercise (continued) ShadowServer |
Network Monitoring and Traffic Analysis (continued) Keisuke Kamata (JPCERT/CC JPCERT Coordination Center, JP) |
Windows Live Forensics (continued) Jonathan Levine, Zane Jarvis (AusCERT, AU) |
Web Security Hands-on (continued) Adnan Shukor, Hafiz Mat Tabrani (MyCERT, MY) |
||||
| 12:30 - 14:00 | Lunch |
|||||||
| Hands-on Session 5 (Afternoon) | Hands-on Session 6 (Afternoon) | Hands-on Session 7 (Afternoon) | Hands-on Session 8 (Afternoon) | |||||
| 14:00 - 15:30 |  Hands on with the Honeywall and virtual honeypots David Watson (Honeynet, GB) |
HTTP Protocol and Web Application Security Shiori Sato (JPCERT/CC, JP) |
Ryan Connolly (Team Cymru, US) |
 Security Informationa and Event Monitoring with OSSIM Haythem EL MIR (Technical Department / NACS, TN) |
||||
| 15:30 - 16:00 | Networking Break |
|||||||
| 16:00 - 17:30 | Hands on with the Honeywall and virtual honeypots (continued) David Watson (Honeynet, GB) |
HTTP Protocol and Web Application Security (continued) Shiori Sato (JPCERT/CC, JP) |
Network Forensics (continued) Ryan Connolly (Team Cymru, US) |
Security Informationa and Event Monitoring with OSSIM (continued) Haythem EL MIR (Technical Department / NACS, TN) |
||||
| 17:30 - 17:45 | Closing |
|||||||
