Wednesday, October 10, 2018
8:00 AM - 9:00 PM
Breakfast and Registration
9:00 AM - 9:30 AM
Welcome and Introduction
Speaker
  • Keith Lehigh, Principal Security Engineer, Indiana University
9:30 AM - 10:15 AM
Keynote- Challenges for Network Monitoring
 
Marcus J. Ranum is a world-renowned expert on security system design and implementation. Ranum is a pioneer in security technology who was one of the early innovators in firewall, VPN, and intrusion detection systems. He has been involved in every level of operations of a security product business, from developer, to founder and CEO of NFR. He holds numerous industry awards. 
 
10:15 AM - 10:45 AM
Break
10:45 AM - 11:15 AM
Community Updates
Speaker
  • Vern Paxson, Chief Scientist, Corelight 
11:15 AM - 12:00 PM
The Ever Increasing Need to Monitor SMB Traffic
Speaker
  • Barry Weymes, Security Engineer, Aramco Overseas Company 
12:00 PM - 1:30 PM
Lunch
1:30 PM - 2:15 PM
Is Weird really weird?
Speaker
  • Fatema Bannat Wala, Security Engineer, University of Delaware 
2:15 PM - 3:00 PM
A Tutorial on Writing Bro Plugins
Speaker
  • Robin Sommer, Corelight/ICSI
3:00 PM - 3:30 PM
Break
3:30 PM - 4:15 PM
Analyzing Active Long Running Connections with Bro
Speaker
  • Joe Johnson, Software Engineer, ICEBRG (recently acquired by Gigamon) 
4:15 PM - 5:00 PM
JA3, JA3S (server) and JA3 for SSH servers and clients
Speakers
  • John Althouse
  • Jeff Atkinson 
5:30 PM - 7:30 PM
Welcome Reception
Sponsored By 
 
Thursday, October 11, 2018
8:00 AM - 9:00 AM
Breakfast
9:00 AM - 9:45 AM
Managing Bro Deployments at Scale Using DevOps Technologies
Speakers
  • Anthony Efantis, Network Security Engineer, Sealing Technologies, Inc.
  • Daniel Lohin, Principal Security Engineer, Sealing Technologies, Inc. 
  • Ed Sealing, President and CEO, Sealing Technologies, Inc.  
  • Julia Walker, Business Development & Marketing Manager, Sealing Technologies, Inc.
9:45 AM - 10:15 AM
DHCP Overhaul
Speakers
  • Seth Hall, Corelight
10:15 AM - 10:45 AM
Break
10:45 AM - 11:30 AM
Bro scripts - 101 to 595 in 45 mins
Speaker
  • Aashish Sharma, Cyber Security Staff, Lawrence Berkeley National Lab
11:30 AM - 12:00 PM
Justin Azoff's LaBROtory
Speaker
  • Justin Azoff, Security Engineer, NCSA/Bro
12:00 PM - 1:30 PM
Lunch
1:30 PM - 2:15 PM
Lightning Talks
2:15 PM - 3:00 PM
Adaptive and Automated Analysis with Broker
Speakers 
  • Matthias Vallentin, Tenzir 
  • Dominik Charousset, Tenzir
3:00 PM - 3:30 PM
Break
3:30 PM - 4:15 PM
Bro Configuration Framework
Speaker 
  • Johanna Amann, ICSI
4:15 PM - 5:00 PM
The Ins and Outs of Developing a new Bro protocol analyzer in BinPAC/Bro in the Financial Services Sector: Developing a strategy for Threat Hunting
Speaker
  • Alan Commike, Reservoir Labs
 
Speakers
  • Threat Hunting Team at Morgan Stanley 
Friday, October 12, 2018
8:00 AM - 9:00 AM
Breakfast
9:00 AM - 9:45 AM
Network Data Enrichment for Analysis and Hunting
Speaker
  • Adam Pumphrey, Bricata
9:45 AM - 10:15 AM
Broadmap
10:15 AM - 10:45 AM
Break
10:45 AM - 11:30 AM
Gaining Insight from Bro Logs through Pattern Discovery with Tensor Decompositions
Speaker
  • James Ezick, Reservoir Labs
11:30 AM - 12:30 PM
Panel Talk
12:30 PM - 1:00 PM
Lunch