No matter what it has been called - there has always been forensics. I started back in 1979 on small black and green things, writing stuff, wondering what happened, and what can be done to make things better. Since then I've done graphics, websites, and a good bit of hacking for banks and the like. My current job is putting it all together to solve cases and find bad guys - nowadays they call me a Cyber Forensic Investigator.

Students and professionals who want to learn the details of computer compromise through hands on experience in a live combat scenario

Fatema Bannat Wala is a Security Engineer at the University of Delaware where her responsibilities include monitoring network traffic for intrusions and malicious activities. Fatema has held prior roles in security research and software engineering and she holds CISSP certification and GIAC security certifications in intrusion analysis, incident handling and penetration testing.

Chris - Chris is an experienced penetration tester with 5 years in the information security industry. He's led a diverse range of red team assessments, from internal networks, to spear-phishing exercises, to web and mobile applications. His areas of interest include exploit development, offensive security training and education, and automation and tool development.

Barrett - Barrett is also a penetration tester and security professional with experience performing a variety of red team assessments. He has created red team tools such as Invoke-PSImage for stealthy payload delivery and Invoke-WCMDump for dumping Credential Manager passwords.

Randy Westergren is a senior lead software engineer at Marlette Funding where his passion for software development, DevOps, AppSec, and other facets of enterprise architecture coalesce. Though primarily focused on engineering, he's recognized as an industry leader for his information security research, some of which has been featured in Forbes, PC Magazine, and CNET.

Jeff Silver, CISSP
Senior Security Engineer, Symantec
Jeff has been involved in the network security industry for over 20 years, working with Intrusion Detection, Vulnerability Assessment, Data Loss Prevention and other network security tools. He currently works for Symantec as a Senior Security Engineer in the Mid-Atlantic Region helping enterprise organizations increase their security posture. Jeff was a founding member and officer of the Delaware ISC2 Chapter, and actively serves on the Academic Advisory Boards of Embry-Riddle Aeronautical University, Anne Arundel and Delaware Tech. A strong advocate of building better cyber collaboration with Law Enforcement, Jeff is a graduate of the FBI Citizen’s Academy and a member of Infragard and HTCIA. He currently lives in Newark, Delaware with his wife and two children and outside of the technology industry is active in his church and local community.

Bryan Inagaki is the Director of Security Risk Management at Thermo Fisher Scientific. Bryan's path to information security was anything but direct, and he took a few detours in the worlds of small business, federal law enforcement and financial services before finding himself fully entrenched in the industry. As a physical security professional first and an information security professional second, Bryan enjoys the challenge of mixing the real with the intangible and taking lessons learned from time spent in critical threat areas to make his teams more effective and efficient.

David has been working in the security field for a long, long time...and active in the security community for over a decade. When not engaged in paying work, he enjoys building and solving cryptography puzzles, playing Pokemon Go, and helping out with his kids' Boy Scout Troop. David runs the KhanFu conference scheduling system, volunteers at ShmooCon and Black Hat, and has recently received a US amateur radio license (though he hasn't had enough time to really play with his new radio...)

Chris Rossi serves as CISO at Rule4. Prior to Rule4, Chris spent nine years at AppliedTrust, where he was Vice President of Governance, Risk, and Compliance (GRC) and provided consulting services for a variety of healthcare, federal, municipal, and private organizations. Chris also served as an outsourced CISO for several healthcare organizations, helping them establish and maintain strategies and programs to ensure their information assets were adequately protected. Chris is heavily involved in the Philadelphia IT community, including running and occasionally presenting at the Philadelphia Security Shell meetup. When he steps away from the office, Chris likes mountain biking, losing at racquetball, and taking the occasional run. He also enjoys reading, cooking, and engaging in regular battles of will with his son and daughter.

Ralph M. DeFrangesco currently works for a Fortune 500 company as a cybersecurity professional. He also teaches cybersecurity classes at Cecil College. He has worked as a security consultant for Fortune 500 companies and frequently publishes papers and presents on cybersecurity topics.

Gangrif is an experienced Sysadmin, YouTuber, and creator of the Iron Sysadmin podcast.

BiaSciLab is an 11-year-old girl who loves science, technology, and learning new things. Her hobbies include fencing, programming, lockpicking, and inventing with her dad. She is working towards becoming a pentester, scientist and an inventor.

BiaSciLab is an 11-year-old girl who loves science, technology, and learning new things. Her hobbies include fencing, programming, lockpicking, and inventing with her dad. She is working towards becoming a pentester, scientist and an inventor.

Heav is a father, programmer and Engineer Of Things. He has been teaching kids programming, soldering and hacking for a number of years. On the administrative staff of DEFCON 610.

David Vargas @CyberBlueTeamer

Dave Vargas is a senior security engineer and professor of cybersecurity at several local colleges and universities in the Washington, DC area. He has worked extensively in cybersecurity in both the public and private sectors and often shares his expertise at security conferences and professional meetings nationwide. Dave graduated magna cum laude from The George Washington University, and successfully completed graduate work in Information Systems at The Johns Hopkins University. His current certifications include CEHv9, CISSP, CISM, and SSCP.

Sr Systems Architect, InfoSec Solutions Architect, all things command line and metal head.

I am an application security architect by day, and a security researcher by night. In the past few years I have discovered, published and presented on numerous vulnerabilities / CVEs spanning multiple areas of technology. I also participated in the development of many anti-spam standards used today (SPF and DomainKeys), and created the Abuse Reporting Format (ARF - RFC 5965) used for exchanging spam reports by most ISPs today. Among other things I authored RFC 4180 which documents the CSV format.

Zeb Whitehead @AdventuresOfZeb

Systems Administrator for Auburn University College of Engineering Alabama

@Zamster and @Krypton3 (no real names, please)

@Zamester is a 12-year-old middle-school student who likes writing secret messages using ciphers and solving puzzles. @Krypton3 is the 9-year-old who decode his brother’s secret messages. They both like to read, and re-read, the Harry Potter books. @Kryton3 first used Harry Potter to explain good password security, and @Zamester found the transposition cipher. They both attended R00tz Asylum at DEFCON and had a great time learning about penetration testing and lock-picking. They hope to go to more conferences and events to learn more about information security.

Jake is an experienced cybersecurity manager at Mandiant, advising senior-level leadership at Fortune 500 and global corporations in developing, operating, and maturing organizational cybersecurity posture. In addition to enhancing existing controls, Jake works to secure organizations after breaches and eradicate attackers.

Joshua Marpet and Scott Lyons

Scott has done all kinds of weird stuff in places he can't talk about. Josh has done weird stuff in jail, Bourbon Street, and other places. They're both infosec people and have been for a long time. Pretty sorry guys, huh? They run a company called Red Lion, where they do compliance and advisory services. People like them, and companies are happy to see them go! Come see them talk!

Robert Simmons is an independent malware researcher. With an expertise in building automated malware analysis systems based on open source tools, he has been tracking malware and phishing attacks and picking them apart for years. Robert has spoken on malware analysis at many of the top security conferences including DEFCON, HOPE, botconf, and DerbyCon among others. Robert also is a maintainer of plyara, a YARA rule parser written in pure python.

Robert, also known as Utkonos, has a background in biology, linguistics, and Russian area studies. He has lived extensively in Russia and Ukraine and has been known to swear profusely and constantly in Russian.

John Hammond @_johnhammond

US Coast Guard hacker and CTF enthusiast. USCG Academy Cyber Team Captain who led the team to winning placements in multiple competitions, both civilian and military. Personally developed training material & infosec challenges, and briefed multiple VIPs on cyber security (USCG Commandant, members of Congress, DHS NPPD Undersecreary). Instructor and curriculum author for Coast Guard course on "Introduction to Linux," with gamifying learning material and classroom activities. Online YouTube personality to showcase programming tutorials, cyber security guides, and CTF video walkthroughs.

As a college student I don’t have much history or background to share, but I hope that this conference will be a good place to start. I’m just happy to be here and it’s an honor to be able to speak.

Kevin Johnson @secureideas

Kevin Johnson is the Chief Executive Officer of Secure Ideas. Kevin has a long history in the IT field including system administration, network architecture and application development. He has been involved in building incident response and forensic teams, architecting security solutions for large enterprises and penetration testing everything from government agencies to Fortune 100 companies. In addition, Kevin is a faculty member at IANS and was an instructor and author for the SANS Institute . In his free time, Kevin enjoys spending time with his family and is an avid Star Wars fan and member of the 501st Legion (Star Wars charity group).

Sean Kilgallon is a postdoctoral researcher at the University of Delaware and Lead Data Scientist at Cyber 20/20, Inc. His research focusses on large scale machine learning for the detection and classification of malware. Using scalable cloud based static and dynamic analysis, he is able to analyze millions of malware files to be used as features for machine learning. His research interests include deep learning, malware analysis, and high performance computing (HPC).

Brandon joined Appalachia in 2018 as a Cyber Security Practice Lead. With prior experience in both private and public-sector IT consulting, Brandon has served in various roles in cyber security over the past 10 years specializing in ethical hacking, cyber security strategy, regulatory compliance, and cyber defense.

Brandon has taught cyber security classes for a world leading Cyber Security bootcamp based out of Chicago and is active in the local Cyber Security community currently chairing the PAHackers Cyber Security meetup group that meets monthly to discuss various issues facing the industry and holding various cyber security related workshops and events.

Brandon has a Master’s degree in Cyber Security and Information Assurance form Western Governor’s University along with numerous security related certifications such as EC-Council’s Certified Ethical Hacker (CEH) and Certified Hacking Forensics Investigator(CHFI) certifications.

I am a Delaware Tech Terry campus graduate (Information Security), current Wilmington University student (Computer & Network Security), and second-time speaker at a security conference. I have been attending security conferences and competitions since the start of my time at Delaware Tech including events such as BSidesDE/DC/NOVA/Charm, ShmooCon, CCDC, SANS NetWars, and USCC training camps. I look forward to giving another presentation at BSides Delaware and giving back to the community I’ve spent the last 4 years of my life being a part of.

Ranjith Menon & Manoj Kumar

Speaker 1:

Manoj has more than 5 years of experience in the field of Application Security and Secure coding process and a co-founder of h1hakz. He has Developed many Secure Application Projects using different languages and has Code reviewed a wide range of applications, from embedded systems to web applications including Retail Banking and E-commerce Application.

Speaker 2:

Ranjith who has more than 8 years of experience. He is an active player on Bug bounty programs and specialised in Web application, Mobile, Cloud and a contributor to the Security Community and founder of h1hakz, an open platform for knowledge sharing though webcast series.
Also he has found many vulnerabilities for many organizations. Apart from hacking, he gets time for fitness from his work schedule.

2016: present Junction Tech Services LLC
Specialists in Data Center & Telco Central Office decommissioning, with emphasis on re-utilization of equipment.

2010 to 2016 Sims Recycling Solutions UK
SRS International Development
 Develop & administer electronics recycling programs and projects for SRS at their 40+ worldwide locations. Purchase materials and negotiate contracts for long term projects. Head of sales & operations for LATAM.

2008 – 2010 Global Investment Recovery, Tampa, FL
Developed Large scale electronics recycling operations in 6 Latin American countries.
1985 – 2008 Crow International Inc Ellsworth, ME
President & CEO
Recycling electronics worldwide. First licensed electronics recycler in Maine. Recycled material for most major and many other Independent Telcos Extensive experience and operations in Latin America.


New England Museum of Telephony, Ellsworth, Maine

Wireless Village @wctf_us @wifi_village

The Wireless Village is a group of experts in the areas of Information, Wifi, and Radio Frequency Security with the common purpose to teach the exploration of these technologies with a focus on security. We focus on teaching Wifi and Software Defined Radio and providing the very best in Wireless Capture the Flag games to promote learning.

Joe is a 35-year veteran of the IT and IA industry. He has extensive experience in DoD, US Government and commercial sectors, focusing on information assurance, red team and network protocol security. As a Fellow for the IPv6 Forum for Cybersecurity, he has participated in development of national and international standards for IPv6 security, as well as International speaking on the topic.
 
He has also spoken at BlackHat, DefCon, ISSA-RMF “Lifeboat”, NSA ReBl, BSides-DC/LV/Delaware, Toorcon, SECTOR, DISA FSO Security Days, SANS, and many more.
 
Joe’s day job is as a computer scientist for The Center for Program and Technology, at MITRE. He develops cybersecurity technologies solutions which contribute to creating a more secure Internet. 

Fatema Bannat Wala is a Security Engineer at the University of Delaware where her responsibilities include monitoring network traffic for intrusions and malicious activities. Fatema has held prior roles in security research and software engineering and she holds CISSP certification and GIAC security certifications in intrusion analysis, incident handling and penetration testing.

Nir started his career as a squad leader in the Israeli Intelligence Corps. He helped companies protect their assets using cyber threat intelligence and inside user's behavior analytics.
Nir has over 15 years of experience as a security engineer and solution architect.
Nir publishes his posts on LinkedIn and speaks occasionally at security conferences.