We have a fantastic week planned from June 4th – 7th with training, a 44CONnect evening and of course hanging out with our friends at BSides London. If you want to join in there’s still time, just book a seat on the Exploiting Insecurity course, or contact us from your early bird ticket e-mail address. Continue reading “44CONnect June Week – What to expect”
Category: 44CON
Building a cloud security training platform – Pt 5: Counting The Cost
My 44CON Cloud Security and DevSecOps training course this June includes AWS, Azure and GitHub accounts which the students use so they don’t need to create their own. As I described in Part 1, I also decided to build a training platform, so that students can connect to a virtual desktop in the cloud with all the software they need pre-installed.
That way they can come on to the course with any laptop or even tablet which supports the Amazon WorkSpaces client.
I built the supporting infrastructure in AWS using Terraform which you can read about in Part 2 of my blog, and then scripted user setup across all environments as described in Part 3. And as you might expect, I incorporated lots of security features, and wrote about them in Part 4.
In this last blog of the series, you’ll hear about a lost USB key, the bill, feedback to Amazon and their response. Continue reading “Building a cloud security training platform – Pt 5: Counting The Cost”
Building a cloud security training platform – Pt 4: Security Features
My 44CON Cloud Security and DevSecOps training course this June includes AWS, Azure and GitHub accounts which the students use so they don’t need to create their own. As I described in Part 1, I also decided to build a training platform, so that students can connect to a virtual desktop in the cloud with all the software they need pre-installed.
That way they can come on to the course with any laptop or even tablet which supports the Amazon WorkSpaces client.
I built the supporting infrastructure in AWS using Terraform which you can read about in Part 2 of my blog, and then scripted user setup across all environments as described in Part 3. Continue reading “Building a cloud security training platform – Pt 4: Security Features”
What Now For The 44CON CFP?
A couple of years ago we wrote a blog post about what happens once the CFP closes. Much has changed since then, so we thought we’d write something up to date.
What The CFP?
Most of what happens today is basically the same as back in 2017. We now have our own CFP platform (Gambit), handling submissions and reviews. Aidan and I run the CFP platform and process, with help from Marizel, Sam, Nathalie and our review panel.
We have 100-200 submissions a year, mostly in the last week and the last day. We expect a slight reduction in 2019 submissions due to Brexit-related uncertainty. Submission quality mostly follows a classical bell curve, with most talks being reasonable, some being outstanding and a few being a bit meh. Sadly, we don’t have 100-200 speaking slots. This means that we have to conduct some form of triage. We use a panel of former speakers, people involved in other events and longstanding attendees to select talks. Continue reading “What Now For The 44CON CFP?”
Building a cloud security training platform – Pt 3: Automated User Setup
This is a guest post by one of our trainers, Paul Schwarzenberger. Paul is running the fantastic Cloud Security and DevSecOps training course this June. He also has a blog where he talks about AWS, Cloud Security and DevSecOps. This is part of a series on how he’s built a platform to make things easier for those attending his training. If you enjoy this, don’t forget to check out parts 1, 2, and 4 in this series. Thanks, Paul!
My 44CON Cloud Security and DevSecOps training course this June includes AWS, Azure and GitHub accounts which the students use so they don’t need to create their own. As I described in Part 1, I also decided to build a training platform, so that students can connect to a virtual desktop in the cloud with all the software they need pre-installed.
That way they can come on to the course with any laptop or even tablet which supports the Amazon WorkSpaces client.
I built the supporting infrastructure in AWS using Terraform – a great tool for infrastructure as code – see Part 2 for more details and screenshots. Continue reading “Building a cloud security training platform – Pt 3: Automated User Setup”
4 New 44CON 2018 Videos
We’ve added another 4 videos from 44CON 2018 to 44CON TV. Our older conf talk videos are also moving over to the channel. If you want them in your YouTube stream, don’t forget to subscribe to 44CON TV and click the bell. Once all the videos are up, we’ll start work on other ways to access our content. Lets see what’s new! Continue reading “4 New 44CON 2018 Videos”
Building a cloud security training platform – Pt 2: Infrastructure As Code
This is a guest post by one of our trainers, Paul Schwarzenberger. Paul is running the fantastic Cloud Security and DevSecOps training course this June. He also has a blog where he talks about AWS, Cloud Security and DevSecOps. This is part of a series on how he’s built a platform to make things easier for those attending his training. Parts 1, 3 and 4 are also available. Thanks, Paul!
Continue reading “Building a cloud security training platform – Pt 2: Infrastructure As Code”
More 2018 44CON Videos Added
This week we’ve added another 5 videos from 44CON 2018. We’re also starting to move our older conf talk videos over to the YouTube channel, so if you’d like them to show up in your stream, don’t forget to subscribe to the 44CONtv channel and click the bell to get notifications as new videos go up. From now on, all of our videos will be up on YouTube as soon as the 1s and 0s can carry them. Continue reading “More 2018 44CON Videos Added”
First Videos From 44CON 2018 Up
For a long time we used to sell access to videos on Vimeo. Recently we moved back to making videos freely available on YouTube. Due to some last minute issues with 2018 we had to do a bit more work to get the 2018 videos to a point we were happy with. However, in 2019 the wonderful Ministraitor will be supporting our videos, and we’ll be able to provide them for free from now on. The first 5 videos from 2018’s 44CON are now ready to go, so read on for the vids and our thoughts. Continue reading “First Videos From 44CON 2018 Up”
Building an AWS and Azure security training platform
This is a guest post by one of our trainers, Paul Schwarzenberger. Paul is running the fantastic Cloud Security and Devops training course this June. He also has a blog where he talks about AWS, Cloud Security and DevOps. This is part of a series on how he’s built a platform to make things easier for those attending his training. If you enjoy this, check out Parts 2, 3 and 4. Thanks, Paul!
Part 1 – Proof of Concept
The Cloud Security and DevSecOps training course I’m delivering for 44CON in June includes AWS, Azure and GitHub accounts which the students use so they don’t need to create their own.
Wouldn’t it be great if students could turn up with any laptop, or even an iPad, and do the course. And the time spent on the labs would be used to learn about cloud security and DevSecOps, not debugging software installation issues.
Continue reading “Building an AWS and Azure security training platform”