Recap for 1/31

Hello, fellow club members! Last meeting, we kicked off our practice for the NCAE Cybergames. The NCAE Cybergames provides a sandbox in which one can practice their skills in different information security categories. We encourage everyone to sign up for a free account and have a hand at the different challenges available. We started off with World of Bills, so that would be a good starting point.

The real NCAE Cybergames will be happening on 2 days: Saturday, February 18th and Saturday, March 11th. Yesterday, we started building teams that will participate, so if you are interested then go to the #announcements channel in Discord and react to the message. This way, we can have a roster of people participating and build out the teams.

Also, the first draft of the badges list is up on the Community page. Check it out!

Recap for 1/24

Hello, fellow information security enthusiasts! Yesterday, we kicked off with our first meeting of the spring 2023 semester. During the meeting, members got a lock picking kit and were able to practice their lock picking skills on clear locks, door knobs (which we provided), bike locks, and everyday Master brand locks. We used this opportunity to debut the new badge system.

Essentially, members can do various tasks to earn badges, cementing their participation and contributions to the club. If you are in our Discord server, you’ll notice the new #badges channel, which shows when members get badges for performing a specific task. As of yesterday, we’ve awarded badges for successfully picking clear locks and for successfully picking non-clear locks. Eventually, we’ll have a page on the website showcasing what tasks you can perform to earn badges, and what badges members have earned, so keep an eye out for that.

Also, we’re introducing an e-board shadowing system. If you would like to learn more about being on the Information Security club e-board or would like to be part of it in the future, then please contact us on Discord or through methods listed on our e-board page. Thank you!

Recap for 11/29

The second-to-last InfoSec club meeting has come and gone! It was full of drama ?, spectacle ✨, and action ?! During this last meeting, all members ascended to the lab and got comfortable with all of our servers. After an introduction of them all, we gave an explanation of our network topology, and logged in to our Palo Alto firewall to look at its current firewall rules and configuration.

Our next meeting will be the last of the semester, so be sure to come. We’ll be having food and playing games to mark off the beginning of the winter break!

Recap for 11/15

This week’s meeting was chill as everyone winds down for the upcoming break, but important bureaucratic discussions were had! First things first, for those who want to give a hand in the lab, please fill out this When2Meet so we can know and figure out the best time for everyone to meet. Also, make sure to go to the roles channel in Discord and grab yourself the “Lab” role!

Second things second, we are currently looking for anyone interested in holding an E-Board position in the club! If you are interested, please express that interest in the Discord. We are looking to do a shadowing program with the current E-Board so that the next generation of E-Board can settle in quickly and do their best to keep the club going for another 10 years! ?

Besides that, make sure to keep up on CyberStart! The break is on its way, so for those heading out, stay safe! And for those staying in Syracuse, also stay safe! Enjoy!

Recap for 10/25

Lots of thanks to Fenya and Juriasi of the e-board, who conducted today’s meeting! We started off by forming teams for the upcoming NCL Team Game, so if you are participating and have not chosen a team or have been put into a team, contact us on Discord so that we can discuss that. Also, CNY Hackathon registration is still open until Friday October 28th, so if you want to go then make sure to sign up at the CNY Hackathon Registration page and fill out the transportation form. Spots are first-come first-served, so be sure to register as soon as possible if you want to go.

During the meeting, we learned about the Simple Shell Server (SSH) tool, which lets us connect to the terminal of a remote computer, most commonly through port 22. If you need SSH access to your server, make sure that your firewall is not  blindly blocking access to port 22! After the lecture, we had a chance to test out using SSH by playing the Over The Wire Bandit game, which has us progress through levels by finding the passwords to different users on a server. You do not need an account to play, just a terminal with SSH installed (it’s installed automatically on Mac Terminal and Windows PowerShell). Definitely try it out if you didn’t get a chance! Here’s a helpful tip: save the passwords in a text file on your computer once you find them so you don’t lose progress.

Today’s photos:

[su_image_carousel source=”media: 1018,1020,1021,1022,1023″ captions=”yes”]

Recap for 10/18

Last Saturday, our team attended Lockdown and gave it their all! Congratulations to them for getting up early, making the trip, and applying the heck out of their blue teaming skills! During the past meeting, they gave insight into what attacks they saw during the competition and their strategy for managing defense and injects. Hint, hint: two people were dedicated to injects at all times so everyone else can focus on defense! The team is on the club Discord, so if you’re curious about how exactly the competition went, feel free to ask on there.

Here is the scoreboard for the competition (we are Team 5):

With Lockdown out of the way, the next events are NCL Individual and Team Games and CNY Hackathon. We’ve added new resources for both those events on the resource page, so get together with your teams, and practice as much as possible in the coming weeks!

 

Recap for 10/11

During the last meeting, we introduced an upcoming speaker event on campus, Leading through Change: Our Nation’s Approach to Cyber​, where Gen. Keith Alexander will speak. We encourage everyone to go, as Gen. Keith Alexander has lots of insider knowledge on cybersecurity at the public level. We also reminded everyone to attend the CyberStart Kickoff meeting held this Friday, October 14th. Again, we encourage everyone to attend so that they can put a foot-in-the-door professionally by talking to security professionals, but also practically by participating in competitions that will serve as practice for future competitions and for the workforce.

We spent the rest of the time practicing in the NCL Gymnasium for the NCL individual game, which is coming up in less than two weeks! If you got a voucher, please put it to good use and do as much practicing as possible. Don’t forget to start forming teams for the NCL team game portion, as well.

If you didn’t get a voucher, we’re working on hopefully getting more. In the meantime, feel free to make an account at PicoCTF. It is free and provides a similar Capture-the-Flag game as NCL.

Both Lockdown and Hivestorm are this Saturday, October 15th. Wish all of our participants luck. Go orange! ?

Recap for 10/04

Lots of thanks to today’s amazing guest speakers: James Rice and Mike Lisi! Mike has graciously decided to sponsor the club, so lots of thanks to him for providing us that. Let’s do great on the competitions to show our gratitude! Especially after both he and James Rice provided us great insight into CNY Hackathon and NCAE Cybergames, both of which are beginner-friendly blue team competitions, so if you are interested in going please fill out the interest form in the QR code or the link below.


Microsoft Forms Link

Also, don’t forget to check the events page, because we have many events coming up, namely ITS’s own CyberStart, Lockdown, Hivestorm, and both NCL individual and team games. Each event page has information and resources, so don’t forget to take advantage of those.

Today’s photos:

[su_image_carousel source=”media: 970,972,971,973,976,975,974″ captions=”yes”]

Announcement for 09/13

Hello, everyone! Today we’ll be having our general body meeting for the Information Security Club at Hinds Hall 011 at 8:00 PM! We’ve outlined a couple of topics that will be discussed at today’s meeting!

With the amount of new faces from the Involvement Fair, we’ll likely do another round of introductions and get everyone acquainted with one another, so have your best speaking voice at the ready.

Once introductions are out of the way, we’ll be focusing on teaching some of the basics of the command line. The command line is best learned by practicing, though, so after the lesson, we’ll have y’all perform some capture-the-flag challenges on PicoCTF. PicoCTF conveniently provides a shell built into the website, so you’ll have all the tools you’ll need for the challenges at-the-ready. Don’t forget that man <name of command> will show you the manuals for any command, so explore and learn as much as you can!

For those already comfortable with the command line or returning members, check the calendar, because competitions will be here before you know it! The deadline for team registrations for Hivestorm are September 23rd 10:00 PM Central, so start thinking about forming teams. We will share resources and documentation compiled by previous competitors, so make sure to study it well in preparation for the competition.

We’re excited for the meeting, and we hope to see everyone there!

Announcement for 5/3

Hello everyone! Tomorrow will be our last meeting of the spring semester. Come by and unwind during finals week. This week we are doing infosec themed Jeopardy! This will also be your last chance to talk to our graduating seniors. Make sure to practice over the summer and prepare yourself for the fall semester. We have big plans 😉

Good luck on final exams and projects!