October 2011
Spoke on SQL Injection issues (see
below) at meetings of the
Vancouver
CIPS Security SIG and
OWASP
Vancouver Chapter.
June 2011
Spoke on SQL Injection issues at the
IT4BC
Conference in Richmond, BC (
"How
to own a BILLION Identities in Less Time
than it takes to Boil an Egg").
June 2010
I will be presenting at the
PIA-BC's
Spring
Conference at the Beach
Club Resort in Parksville, Vancouver Island
BC, June 4-5.
The topic will
be "Private Investigators! - How to Protect
Your and Your Clients' Digital Assets", and
will cover best practices in IT and
Information Security for private investigation
firms (see
here
for more details).
April 2010
First informal meeting of the
Vancouver Chapter of OWASP (of which I am
chairman) at Steamworks! (
http://www.owasp.org/index.php/Vancouver)
March 2010
Presented at the CIPS Security SIG
March 2010 War-games day (
http://www.infosecbc.org).
December 2009
Taught a
CWNA/SP boot-camp in
Kansas City KS of all places. Bah, humbug!
November 2009
Made it to the
OWASP Appsec DC
conference in Washington DC. First visit.
Avoid the politics and you will be ok. Came
second in the CTF competition ("I wuz cheated,
I wuz!").
September 2009
Presented to the Drupal User Group on
web application security (
http://groups.drupal.org/vancouver).
August
2009
Finally put my money down and bought a
copy of "Hyperion", the first book in Dan
Simmon's
Hyperion Cantos SF
series. Wonder what they'll do for the movie.
June 2009
Made
it
to London, UK, for the European
e-Identity Conference, June 25-26th, and to
Cardiff, Wales, for Jeff Wayne's War of the
Worlds Live on Stage, June 24 (based on
the book by H.G. Wells,
www.thewaroftheworlds.com).
I
survived the invasion and have the T-Shirt to
prove it.
May 2009
Played a small part behind the scenes
in determining the true origin's of Mr.
Coleridge's e-mails in White Rock local
election dispute
(http://www.bclocalnews.com/news/46113347.html).
March 2009
Wrote and passed the exam for the
Certified Wireless Security
Professional (CWSP) certification. Yay!
February 2009
Still buried in the snow. Attending the
10th Annual Privacy and
Security Conference in Victoria,
February 2-4. We have had a
flyer included in
the delegates' kits, advertizing our company
and services.
January 2009
Buried under snow here on the Mountain.
Ain't goin' nowhere... (at least the silly
season is over!)
December 2008
Taught a 5-day Certified Penetration
Testing Specialist (CPTS) class in
Ottawa,Canada. First visit to Montreal and
Quebec City too.
Reading the
Hyperion Cantos
backwards - can't seem to find a copy of the
first book in the series (
"Hyperion").
October 2008
Presented
paper
on "Blind SQL Injection" to students of the
University of British Columbia's (UBC)
Electrical and Computer Engineering (ECE)
School. The powerpoint is available
here.
September 2008
Teaching three evening courses at
BCIT - "
Introduction to Computer
Crime Studies (FSCT7220)", "
Cryptography Practice and
Theory (FSCT8580)", and "
Applied Wireless Networking
(COMP3660)". I do not have a life!
Just finished teaching
Ethics
at
UBC
for their
NASP program.
July 2008
Instructor for the
Mile2 Certified
Penetration Testing
Specialist /
Expert bootcamp in
Tampa, Florida (July 7 through 12).
Finally obtained the
Certified Penetration
Testing Expert (CPTE) and
Certified Penetration
Testing Specialist (CPTS)
certifications.
May 2008
Presented the
online webinar 'The Art of Pentesting' in
conjunction with Mile2 and Nexient Learning. A
link to the online archive of this
presentation will be available soon.
Another
successful presentation (13 students)
of our 4-day Web Application
Security course took place, Monday
May 12 to Thursday May 15, at the On-Track Computer
Training facility in downtown
Vancouver (1600 - 650 West Georgia St.) The
course outline and some background
information is available here.
April 2008
Atttended the RSA
Conference in San Francisco ,
April 7-11.
Presenting Business Continuity
Planning (FSCT7130) course at BCIT.
March 2008
Off
to Tampa (yes, the one in Florida),
for some training by Mile2 to become a Certified Pentest
Specialist (CPTS). Now Rui will be
even more dangerous! He will be teaching two
modules - wireless hacking and web
application hacking.
February 2008
Attended the 9th Annual Privacy and
Security Conference and Exposition
in Victoria BC.
November 2007
Attented the
10th WestCoast Security
Forum in Vancouver, November 19 and 20.
Finished reading Philip Pullman's 'His
Dark Materials' trilogy. Soon to be a movie
starring Nicole Kidman and Daniel Craig
(the 007 guy). Oh, to be a Young Adult again.
September 2007
Our 4-day Web Application
Security course in Vancouver, BC. has now
wrapped up. We will be presenting this
material again in early 2008. If you
are interested in attending please contact
us. The
course outline and some background
information is available here.
Started teaching Introduction to Computer
Crime Studies (FSCT7220) and Applied Cryptography
(FSCT8580) at the BC Institute of
Technology (BCIT). These courses are
part of the School of Computing and
Academic Studies Forensic Program.
Also started teaching Applied Wireless
Networking (COMP3660), based on the
Certified Wireless Network Administration
(CWNA) certification.
Rui is trying to get one more
certification under his belt (Certified Wireless
Security Professional, CWSP).
August 2007
Project in the Yukon of all
places.
Taught Ethics course at
the University of British
Columbia (UBC) (part of the NASP program).
July 2007
"Summertime
and the living is easy"
June 2007
Finally finished plodding through Neal
Stephenson's book
Cryptonomicon (see
below). If you venture this way, try to
distinguish the fact from the faction!
May 2007
Rui presented a short talk at
the CIPS
Vancouver Security SIG
May "Local Innovators" session, on his
experiences running a security consulting
firm.
I (Rui) am plodding through Neal Stephenson's
book
Cryptonomicon.. From a
review by the Library Journal we have
"Computer expert Randy Waterhouse spearheads a
movement to create a safe haven for data in a
world where information equals power and big
business and government seek to control the
flow of knowledge. His ambitions collide with
a top-secret conspiracy with links to the
encryption wars of World War II and his
grandfather's work in preventing the Nazis
from discovering that the Allies had cracked
their supposedly unbreakable Enigma code." At
918 pages (and that includes the appendix by
Bruce
Schneier describing the
Solitaire Cipher), this
is not something to take in at one
sitting. I teach Cryptography at a local
college (
http://www.bcit.ca/study/outlines/fsct8580200730),
and
use it extensively in my work, so this book
(with it's off-hand and sometimes
detailed inclusion of cryptographic
techniques and history) is most interesting.
Very readable and highly recommended!
Rui taught the telecommunications security
course at the
University
of British Columbia (UBC) (part of the
ISSP
program).
Taught part of the
Business Continuity Planning
course at
BCIT.
Fifteen years of service
excellence - 1998-2013.