Here are some of the presentations I’ve given. Sometimes I’ll give the same presentation to multiple groups, so not all iterations of the same talk may be listed.
- National Initiative for Cybersecurity Education (NICE), “Learning About the Human Vulnerability in Cyberattacks via a Social Engineering Capture the Flag Competition”, with Prof. Aunshul Rege of Temple University, November 2020
- Temple University, “Introduction to Social Engineering”, September 2020
- DerpCon, “Go Phishin’ with GoPhish“, May 2020
- OWASP Copenhagen, “GoPhish Tips & Tricks”, with Alethe Denis, May 2020
- BSides Connecticut, “Pentesting: Tips, Tricks and Stories“, November 2018
- OWASP Boston Application Security Conference (BASC), “How a Hacker Views Your Web Site“, October 2014
- Full Stack Developers’ Group, “OWASP Top 10 with Demos“, August 25, 2014
- Akamai Booth Talks at RSA APJ, “Threat Brief Overview”, July 22, 2014
- Boston Security Meetup Conference, “DDoS By and Unlikely Culprit!” February 8, 2014
- New England Tech – Guest Lecturer, “Intro to Web App Penetration Testing”, May 2013
- BeaCon, “Pharmaspam at an .edu” April 20, 2013
- OWASP RI, “Hands-On Hacking“, March 4, 2013
- Boston College Security Camp, “From ‘1’ to pwned: Using MySQL and PHP to Own the Box“, March 4, 2013
- Paul’s Security Weekly, “A CSRF Primer“, January 10, 2013
- Bryant University Security Day, “When Bots Attack! Or, just fix your permissions“, May 24, 2012
- Boston College Security Camp, When Bots Attack! Or, just fix your permissions, March 2012
- Many internal training sessions at Akamai Technologies on web security threats and attacks/defense. Topics included: Exploiting Path Traversal, Attacking Application Logic, Tools of the Hacker Trade, Using Components with Known Vulnerabilities, What is CSRF and How Does it Work, Web Shells 101, Mobile Device Security Overview
OWASP Boston Application Security Conference – October 18, 2014
Boston Security Meetup Conference – February 8, 2014