Peerlyst Singapore

Thursday, March 16, 2017 6 months ago Singapore, Singapore

MWR's Sai Sathyanarayan and Kaung Htet Aung will be presenting at the first Peerlyst Singapore.

Calendar

Event Description

The first Peerlyst Singapore Meetup is an official Peerlyst chapter in Singapore. There are plans to organize quarterly meetups on Cyber Security related topics. Peerlyst provides a platform for speakers to exhibit their work to the world.

 

Talks presented by MWR

  • Time: 18:30:00
  • Room: SMU Labs, Level-4
  • Topic: Building Tools To Overcome Unusual Situations
  • Speaker: Sai Sathyanarayan
  • Description: Conducting security/penetration testing in recent times is not straightforward. Furthermore, security professionals, a.k.a. penetration testers, cannot entirely rely on the standard industry tools to conduct assessments successfully.

    In this talk, we will discuss, firstly, the various challenges faced when using conventional tools to perform day-to-day penetration testing operations followed by ways to overcome the said challenges by building custom tools over the existing software. This talk will also give you an idea on how you can write your own custom tools for security testing.

    This talk is focused on pure professional penetration testing experience, the challenges that I faced in my 6 years as a Security Consultant and the tools I developed to overcome these challenges.

 

  • Time: 19:00:00
  • Room: SMU Labs, Level-4
  • Topic: I know what you received at your mobile
  • Speaker: Kaung Htet Aung
  • Description: This talk will evolve around why we should care and be suspicious about the products we have been a customer of. What if those products might have been compromised and controlled by attackers hijacking everything you do? Do we actually trust and believe what those appliances and products might be telling us?  I will walk you through how my friend and I discovered some high severity bugs from a SMS gateway appliance, which is widely used in banking and financial sectors in Asia. I will share the steps we took which ultimately gave us 3 CVE IDs.

 

 

Registration

You can register for tickets here.

Accreditations

MWR is an accredited member of The Cyber Security Incident Response Scheme (CSIR) approved by CREST (Council of Registered Ethical Security Testers).
MWR is certified under the Cyber Incident Response (CIR) scheme to deal with sophisticated targeted attacks against networks of national significance.
We are certified to comply with ISO 14001 in the UK, an internationally accepted standard that outlines how to put an effective environmental management system in place.
MWR is certified to comply with ISO 27001 to help ensure our client information is managed securely.
As an Approved Scanning Vendor MWR is approved by PCI SSC to conduct external vulnerability scanning services to PCI DSS Requirement 11.2.2.
We are members of the Council of Registered Ethical Security Testers (CREST), an organisation serving the needs of the information security sector.
MWR is a supplier to the Crown Commercial Service (CCS), which provides commercial and procurement services to the UK public sector.
MWR is a Qualified Security Assessor, meaning we have been qualified by PCI to validate other organisation's adherence to PCI DSS.
As members of CHECK we are measured against high standards set by CESG for the services we provide to Her Majesty's Government.
MWR’s consultants hold Certified Simulated Attack Manager (CCSAM) and Certified Simulated Attack Specialist (CCSAS) qualifications and are authorized by CREST to perform STAR penetration testing services.