-
Notifications
You must be signed in to change notification settings - Fork 324
Mal.Con '24 Announcement
Seth Grover edited this page Aug 27, 2024
·
37 revisions
We're excited to announce Mal.Con '24, a technical exchange dedicated to technical discussions, capability demonstrations, and road-mapping future development and training activities for Malcolm!
- When: 9/4/2024
- Time: 0800-1700 with "no-host" social hour following the technical exchange
- Where: 4200 Wilson Blvd, Arlington, VA 22203
- Parking: There is parking beneath the building - once parked please meet one of our staff members in the main lobby and we'll escort up to the conference space.
- Public Transportation: The Ballston Metro station is a few blocks from the facility - WMATA Information
- Wear: Casual attire
| Time Start | Time End | Duration (min.) | Discussion/Activity | Presenter/Speaker |
|---|---|---|---|---|
| 08:00 AM | 09:00 AM | 60 | Check-In | |
| 09:00 AM | 09:10 AM | 10 | Opening Remarks | Shaun Long (CISA) |
| 09:10 AM | 09:20 AM | 10 | Leadership Remarks | EAD Green |
| 09:20 AM | 09:55 AM | 35 | Malcolm Tech Roadmap | Seth Grover (INL) & Shaun Long |
| 09:55 AM | 10:05 AM | 10 | Break | Shaun Long |
| 10:05 AM | 10:50 AM | 45 | ACID Zeek Behavior Detections | Jake Steele & Jack Cyprus (MITRE) |
| 10:50 AM | 11:00 AM | 10 | Break | Alex Reniers (CISA) |
| 11:00 AM | 12:00 PM | 60 | Parsnip Overview & Use Cases | Melanie Pierce & Christopher Becker (INL) |
| 12:00 PM | 01:15 PM | 75 | Lunch | Lunch |
| 01:15 PM | 01:55 PM | 40 | NLP Plugin For Opensearch Dashboards | Michelle Dowling (PNNL) |
| 01:55 PM | 02:10 PM | 15 | Malcolm tech improvements from simulated IR & TH engagements | Jason Allnutt (CISA) |
| 02:10 PM | 02:45 PM | 35 | Malcolm usage across Europe & highlight CSAF plugin | Jens Weisner (BSI) |
| 02:45 PM | 03:00 PM | 15 | Break | Alex Reniers |
| 03:00 PM | 03:40 PM | 40 | Netbox - OT Asset Inventory | Sam Lee & Jake Duda (CISA) |
| 03:40 PM | 04:20 PM | 40 | Malcolm & EKS in the Cloud | Amazon AWS Team |
| 04:20 PM | 04:40 PM | 20 | PSA – 3 Minutes on Malcolm | Open to Public |
| 04:40 PM | 04:50 PM | 10 | CTF Results | Sara Hudson (INL) & Shaun Long |
| 04:50 PM | 05:00 PM | 10 | Closing Remarks | Kim Sanders |
Here is a small sample of some of the presentations we have lined up:
- How to use NetBox to inventory your ICS network and how are we making asset description easier for owner/operators
- CISA & MITRE's new open-source package ACID: advanced detections & behavioral analysis for OT protocols
- CISA & INL's new open-source protocol parser toolkit, Parsnip: overview & deep-dive demonstration
- ICS Capture-the-Flag running 8/31-9/4 with live awards presentation at Mal.Con '24
- Register for the CTF starting on August 24th
A few asks:
- Please take a moment to fill out this registration if you plan to attend either in person or remotely.
- Pass this around to others who may be interested!
Thank you for your support with this event! We're planning to post updates for the event here on GitHub and we will send direct email reminders as we get closer to Mal.Con '24.