ØxＯＰＯＳɆＣ

2016 Events

[INIT] - The Gathering

Let’s meet and share something c00l!

[Goals]

Learn something new, get to know others g33ks, build an information security community/group in the Porto area and the most important thing have fun.

[Agenda]

Who are you? (Members/Participants small introduction)

XXE and XEE detection by Ana Gomes
Node.js Problems in Paradise (Demo) by Renato Rodrigues (@SiMpS0N)
(Un)Securing Stuff with IoT by David Gouveia (@zatarra)

*Social drinks on the house 😉

[Not Sure if I’m Welcome]

Don’t think twice, just come.

x0POSOCEM eeut psia obtul aenrni gna dhsrani g0cl0s utff
*Not mandatory.

Mar 01, 2016

[0x31] - The Meet

The first meetup was great and represents the first step towards our goals, thanks to everyone that made it possible and shared their “tips and tricks”, on the same spirit let’s bring more knowledge and more content. Hopefully, at this meeting, some international “wisdom” will be with us 😀.

[Goals]

Learn something new, get to know other g33ks, build an information security community/group in the Porto area and the most important thing have fun.

[Agenda]

Who are you? (New participants small introduction)

Bug Bounties by Miguel Regala (@fisher)
Security Headers by Renato Rodrigues (@SiMpS0N)
Terminal and Shell attacks: Targeting the Sysadmin (Demos) by Federico Bento (@uid1000)

*Social drinks on the house 😉

[Not Sure if I’m Welcome]

Don’t think twice, just come.
Note: When someone is RSVP to an event is grabbing a seat that could be for other, make sure that you can attend before answering.

[Challenge]

http://pathonproject.com/zb/?335c4081eeab4d9d#SUG2/S9aC6QUTf6CIVQtG+kFMldXmJg4bFWyY5tiGhg=

Mar 31, 2016

[0x32] - The Meet

The second Meetup was a success, a lot of new faces, different working fields, all kind of expertise, great talks, nice chats, overall evaluation over 9000 😉 thanks to all participants for passing by. In the same spirit let’s bring more knowledge and more content. Remember to join our Slack chat to discuss the agenda and of course interact with other members.

[Goals]

Learn something new, get to know other g33ks, build an information security community/group in the Porto area and, the most important thing, have fun.

[Agenda*]

Who are you? (New participants small introduction)

ZSUN Wifi Card Reader by David Gouveia (@zatarra)
Mobile Security in iOS by Herman Duarte (@hdontwit)
Challenge Solution by André Baptista (@0xACB)

*Social drinks on the house 😉

[Not Sure if I’m Welcome]

Don’t think twice, just come.
Note: When someone is RSVP to an event is grabbing a seat that could be for other, make sure that you can attend before answering.

[Challenge]

Endpoint: nc challenge.madlabs.pw 4455
Bin: http://madlabs.pw/xor-server

Apr 28, 2016

[0x33] - The Meet

The fourth meeting is getting shape; we already have some activities and some shorts talks proposals, if you are keen in security and want to learn something new join us in one more g33k meeting 😈. Remember to join our Slack chat to discuss the agenda and of course interact with other members.

[Goals] Learn something new, get to know other g33ks, build an information security community/group in the Porto area and, the most important thing, have fun.

[Agenda]

Who are you? (New participants small introduction)

Lock-picking Workshop
Lockpicking 101 by Duarte Monteiro (@d0kt0r) and Miguel Regala (@fisher)
A hands-on approach on botnets for a learning purpose by José Pinto and João Dias

*Social drinks on the house 😉

[Not Sure if I’m Welcome]

Don’t think twice, just come.
Note: When someone is RSVP to an event is grabbing a seat that could be for other, make sure that you can attend before answering.

[Challenge]

http://pathonproject.com/XSS.swf

May 31, 2016

[0x34] - The Meet

We are shaping a great community full security enthusiasts and experts, in the past meetups we learned about modern web technologies flaws, system administrations nightmares, IoT will be our best “friend” 😈, mobile security and several other topics. If you are keen on security and want to learn or share something new, join us for the fifth meeting. Remember to join our Slack chat to discuss the agenda and of course interact with other members.

[Goals]

Learn something new, get to know other g33ks, build an information security community/group in the Porto area and, the most important thing, have fun.

[Agenda]

Who are you? (New participants small introduction)

Template Injection 101 by Miguel Regala (@fisher)
Live Streaming Security: Inner Security and Anti Leeching Tips by João Duarte (@Deluxor)

*Social drinks on the house 😉

[Not Sure if I’m Welcome]

Don’t think twice, just come.
Note: When someone is RSVP to an event is grabbing a seat that could be for other, make sure that you can attend before answering.

[Challenge]

https://www.davidgouveia.net/app-release.apk

Find the flag and ping d0kt0r, fisher, simps0n or zatarra on Slack :)
Gentlemen, start your clicks!

Jul 05, 2016

[0x35] - The Meet

The community is getting bigger and full of enthusiasts, a huge thumbs up (👍) to all the participants that passed by all the past meetups. Special thanks to all speakers that took their time to share knowledge and contribute to a better community.
Just as a teaser in past we talked about: modern web technologies flaws, system administrations nightmares, IoT will be our best “friend” 😈, mobile security, live streaming security and more. If you are keen on security and want to learn or share something new, join us for the 6th meeting. Remember to join our Slack chat to discuss the agenda and of course interact with other members.

[Goals]

Learn something new, get to know other g33ks, build an information security community/group in the Porto area and, the most important thing, have fun.

[Agenda]

Who are you? (New participants small introduction)

SSRF.. aka.. how to pierce perimeter defences like a boss!!!” by Ricardo Almeida (@vibrio)
Hacking World 101 by Miguel Regala (@fisher)

LockPick Station (Get your skills updated!)
*Social drinks on the house 😉

[Not Sure if I’m Welcome]

Don’t think twice, just come.
Note: When someone is RSVP to an event is grabbing a seat that could be for other, make sure that you can attend before answering.

[Challenge]

https://arena.davidgouveia.net/challenge/

Hint: PHP FTW!

Sep 21, 2016

[0x36] - The Meet

The summer is ending. Hopefully, everyone is recharged and ready to dig in the security world again. A lot of new stuff happened since our last meeting: Info$3c dramas, epic exploits chains, corporate DB leakage, and so on. Pick one and maybe you got something to share with the community.
In the end, just join us for the 7th meeting. Remember to join our Slack chat to discuss the agenda and, of course, interact with other members. PS: Although everyone enjoyed the human heat from the last meeting, this time we managed to get the usual event room at Blip (BlueWhale). So as usual enter on the door nº17 for direct room access.

[Goals]

Learn something new, get to know other g33ks, build an information security community/group in the Porto area and, the most important thing, have fun.

[Agenda]

Who are you? (New participants small introduction)

Ransomware 101: Threats & Countermeasures by Alexandre Ferreira (@netshark)
In Headers/ Padlocks / site Seals / CA’s we trust! by pipas

LockPick Station (Get your skills updated!)
*Social drinks on the house 😉

[Not Sure if I’m Welcome]

Don’t think twice, just come.
Note: When someone is RSVP to an event is grabbing a seat that could be for other, make sure that you can attend before answering.

[Challenge]

Hey, This is John from OPOLICE. We have a unknown black hat under investigation. We installed a sneaky sniffer in his place.

Can you please look at this file?

http://ツ.tv/oposec-0x36

Thank you

Your goal is to find the name of the suspect. Ping d0kt0r, fisher, simps0n or zatarra on Slack to submit the solution :)

Thanks @andrebaptista for the challenge!

Nov 23, 2016

[0x37] - The Meet

Ready, Set, Go! Join us for the eighth meeting, don’t be shy and step up for short talk, tons of topics around since the last meeting, if you are lost, Dirty C0ws now are an IT thing, Hammering is cooler than you think and have a look in the materials dumps from BlackHatEU and Ruxcon for inspiration.
Note that the venue as changed, Blip has a new house check the map for the new location. If you are thinking to travel by metro, 24 de Agosto is the nearest station. Remember to join our Slack chat to discuss the agenda and, of course, interact with other members.

[Goals]

Learn something new, get to know other g33ks, build an information security community/group in the Porto area and, the most important thing, have fun.

[Agenda]

Who are you? (New participants small introduction)

OSSIM, the Open Source Security Information Management by Alexandre Ferreira (@netshark) (a primer on) General Data Protection Regulation by António Pinto (@aap)

LockPick Station (Get your skills updated!)
*Social drinks on the house 😉

[Not Sure if I’m Welcome]

Don’t think twice, just come.
Note: When someone is RSVP to an event is grabbing a seat that could be for other, make sure that you can attend before answering.

[Challenge]

I think I’m out of my mind…
Can you find the flag for me?

http://ツ.tv/oposec-0x37

Ping SiMpS0N, fisher, zatarra and d0kt0r on Slack for hints or to submit the solution :)