SAINTCON 2019

Monday, Oct. 21, 2019

• 09:30 - Locksport Key Casting demo

Tuesday, Oct. 22, 2019

• 09:00 - Welcome to SAINTCON 2019
• 09:15 - Keynote Session Keynote
• 13:00 - Exploit Development Training
• 13:00 - Becoming the YARA Hunter Training
• 13:00 - 0wn th3 c0n
• 13:30 - Threat Hunting like a Scientist
• 13:30 - Keynote Panel Discussion and Q & A for Leadership
• 13:30 - Using Docker and Your Shell for Security
• 13:30 - Understanding and Working with Young Hackers in Education
• 14:00 - Reverse Engineering and Code Emulation with Ghidra
• 14:00 - Keys to the Kingdom
• 14:00 - Avoid putting yourself in a silver platter for hackers with Security Frameworks 101
• 14:30 - How GDPR nearly made me miss the birth of my daughter & why I'm worried CCPA will make me miss her birthday
• 14:30 - Meet the CISO
• 14:30 - Raspberry Pi Experiments
• 14:30 - SOC It 2 Me
• 14:30 - Exploiting Enterprise Access Control
• 15:00 - Vishing 101 Training
• 15:30 - How to Hashcat
• 15:30 - Top Findings in LEA Security Penetration Tests
• 15:30 - Chuck the lockpicks, we still gettin' in! A survey of physical security bypass techniques.
• 15:30 - Developing a Cyber Security Strategy, Tactics come after
• 15:30 - DevSecOps: Expectations for next-gen AppSec

Wednesday, Oct. 23, 2019

• 08:00 - Threat Hunting with Splunk Training
• 08:00 - AWS Hands-On Intro Training
• 08:00 - Active Directory: Elevate your Domain Security - Part 1 Training
• 09:00 - Students who Hack (and other Technology Misuses), What the Law Requires, Student Discipline and School Responses
• 09:00 - Gathering All the WiFi: Tales of the WiFiCactus and WiFiKraken
• 09:00 - The Joy of Hacking - with Bob Ross*
• 10:00 - One man's trash is another man's Home Lab (2019 Edition)
• 10:00 - What the CTF?
• 10:00 - Legislative Concerns and Direction for Student Data Privacy, Security and Filtering Development and How Data Security Professionals Can Help
• 10:00 - DevSecOps: Scalable Event-Driven Security Infrastructure for Hybrid Environments
• 10:00 - In this informal discussion, presenters/school law attorneys will discuss and answer questions on local and national examples and cases about students hacking and other technology misuses.
• 11:00 - The Riddle of Ryuk
• 11:00 - A Question/Answer Session Based on the “Legislative Concerns and Direction for Student Data Privacy, Security and Filtering Development and How Data Security Professionals Can Help” Presentation
• 11:00 - Utah DPS SIAC Cyber Program
• 11:00 - Living off the Land: Come for the living off the land, stay for the memes
• 11:00 - Identity & Access Management Why?
• 11:00 - Call, text, and even rewrite past text messages: How your phone uses AT commands
• 11:30 - Cloud Security: Do it Right the First Time
• 11:30 - Drone Hacking
• 11:30 - Fake News, Real News, and Disinformation: How it works, what to do about it
• 11:30 - Getting over impostor syndrome in INFOSEC
• 13:00 - Your SAINTCON network
• 13:00 - Active Directory: Elevate your Domain Security - Part 2 Training
• 13:00 - Cyber Threat Response (CTR) Workshop Training
• 13:00 - I Can't Be Hacked... I'm Serverless! Training
• 13:00 - Wireshark: A Beginners Introduction Training
• 13:30 - RetroMal: Analyzing malware on the earliest computing platforms
• 13:30 - CUES and Cache Phishing Attacks
• 13:30 - CIS Critical Security Controls Framework Review
• 13:30 - eduroam vs Open Access Wifi: a method for the madness
• 14:00 - USBE Student Privacy and Data Security Updates
• 14:30 - Is Network Monitoring Dead in the Age of Encryption?
• 14:30 - Introduction to Biohacking, and the Implantable Computer Project
• 14:30 - CoSN Security Tools and Resources for Educational Technology Leaders
• 14:30 - Hacking Hackers: Sure you can borrow my clicker!
• 15:00 - Education Strategies around Cyber Security
• 15:00 - Hands on pwning in the SAINTCON labs Training
• 15:30 - How to stop a mean two headed serpent called Hydra
• 15:30 - The Badge Talk
• 16:00 - Utah Wireless Administrator Group (UWAG) and the Eduroam User Group In-Person User Group Meeting

Thursday, Oct. 24, 2019

• 08:00 - AWS Security Hands-on Intro Training
• 08:00 - Next-Layer Hacking - Testing Web Services (SOAP, REST, GraphQL) Training
• 08:00 - Introduction to Python - A Crash Course Part 1 Training
• 09:00 - Policy development for large and complex education organizations
• 09:00 - The Culture of Filtering: Filtering for Fear vs Filtering for the Student
• 09:00 - Introduction to I2C on the bus pirate
• 10:00 - How to Complete a Vendor Review: The Right Way
• 10:00 - NFC & RFID Bio-Implants: For Fun and Profit
• 10:00 - Embracing the Dark Web - A Security Community Call to Action
• 10:00 - How to Improve the Maturity of Your Organization's Security
• 10:00 - LTE/5G Wireless Networks - An update on the UETN's pilot
• 10:00 - Building a Vulnerability Management Program with Nessus Training
• 11:00 - Security Incident Handling for Leaders
• 11:00 - Building your first SIEM with the Elastic Stack
• 11:00 - Getting started with KiCad - designing your first minibadge from art to fab
• 11:00 - RFID/NFC use in Game Console Accessories
• 11:00 - Cybersecurity in Schools: How Good is Yours?
• 11:00 - The Secure Socket API
• 11:30 - The Evolution of Video Surveillance: using AI and Machine Learning to Leverage Cameras as a Sensor
• 13:00 - Privacy Workshop Training
• 13:00 - Introduction to Python - A Crash Course Part 2 Training
• 13:30 - Under the hood of SAINTCON labs
• 13:30 - Stuff your pihole with malware and ads
• 13:30 - The Megacortex Mysteries
• 13:30 - The Four Horsemen of Passwords
• 13:30 - Cyber Insurance - Claims Trends
• 13:30 - Discussing Strategies for helping senior/cabinet level educational leaders focus and better understand data security needs
• 14:30 - Live Demo: Know Your Adversaries
• 14:30 - Serverless Security 101
• 14:30 - Social Engineering and Manage your Risk
• 15:00 - Security Assessments Overview
• 15:00 - Academic Freedom vs. Data Security
• 15:30 - Evolving Manipulation: Cracking the Combo
• 15:30 - May the Cloud be with You: Red Teaming GCP (Google Cloud Platform)
• 15:30 - (Active) defense against the dark arts
• 15:30 - Whose slide is it?

Friday, Oct. 25, 2019

• 10:00 - Private LTE networks - Emerging technologies that promise quality and security.
• 10:00 - hover craft 101
• 10:00 - Hacking on SAINTCON Badges
• 10:00 - DNS and TLS Privacy and Security - Content Security Today and Tomorrow
• 11:00 - Roll Your Own Pentest Distro
• 11:00 - Hacker's Challenge Wrap-up
• 11:00 - I Got Social Engineered to Speak at SAINTCON
• 12:15 - Closing Session, Thanks, Awards, Etc.

• Adam Fishre
• Aelon Porat
• Alan Gibbons
• Andrew Brandt / Spike
• Andrew Goble
• Bryan Peterson
• Bryce Kunz
• Carol Lear
• Chase Palmer
• Chris Larsen
• Chris Mather
• Clint Russell
• Clint Sorensen
• Corey Batiuk
• Corey Roach
• Cory Stokes
• Dallin Warne
• Daniel Dayley
• Daniel Zappala
• David Long
• David Packham
• David Sallay
• Doug Copeland
• Erich Ficker
• Ethan Heintzelman
• Gavin Anderson
• George Bekmezian
• Hanna Bennett
• Heidi Alder
• Jake Bernardes
• James Pope
• Jason Eyre
• Jason Gale
• Jeff Egly
• Jeremiah Christensen
• Jeremy Cox
• Jeremy Pierson
• Jerry Smith
• Jim Shakespear
• John Pope
• Jon Stutz
• Jonathan Smith
• Jonathon Degn
• Josh Galvez
• Karl Sickendick
• Kaydan/Pips
• Keenan Fessler
• Kenton McDaniel
• Kevin Crook
• Kevin Lustic
• Kevin Womack
• Kimber Duke
• Kyle Feuz
• Mark Miline
• Mark Petersen
• Marv White
• Matt Lorimer
• MicK Gomm
• Michael Fischer
• Michael Julander
• Michael Whiteley
• Mike Spicer / d4rkm4tter
• Mike Weaver
• Nate Henne
• Pete Kruckenberg
• Rachel Tobac
• Rick Gaisford
• Robert Kerby
• Ryan Burnett
• Ryan Otteson
• Sam Bowne
• Scot McCombs
• Scott Nielsen
• Sean Jackson
• Sean McHenry
• Senator Todd Weiler
• Seth Johnson
• Seth Law
• Shaun Price
• Shaun Stapley
• Spencer Heywood
• Stefanie Tidwell
• Steve Ball
• Tristan Rhodes
• Troy Jessup
• Victor Steven Morales
• Waylon Grange