Intro (full) - Security BSides Athens 2021

good morning and good afternoon to everyone joining us today from around the world in our sixth edition of security beside athens 2021 the live stream edition my name is dr gregorios fragos and as known by most of you greg and i am responsible for organizing a besides approved community-based information security conference in athens greece along with an amazing team of volunteers we started in 2016 and since then we have had about 150 talks and workshops 70 speakers from all over the world both greeks and non-greeks and a truly awesome lineup of sponsors we were hoping this year to be able to go back to a physical in-person event which we will really have enjoyed putting together the previous years

but due to the circumstances we had to adjust and adapt once more in order to move forward you see sometimes you need to embrace plot twists and try make the most you can despite the circumstances especially for those of us who truly believe we could and can make it happen apparently putting together a live stream event has several challenges i would say which we could not foresee however despite those challenges and circumstances at different levels we really hope we manage to put together an enjoyable day for you full of interesting talks before we start allow me to mention that this year due to the overwhelming number of amazing talks and workshop submissions we did something new for the first time

the week leading to the event we released a number of talks and workshops on our youtube channel for all of you to enjoy marked as pe which stands for pre-event talks please welcome my colleague jessica russo who will introduce you to our sponsors if it was not for these companies and organizations supporting the local and international cyber security community it will not be able for us to have security b sites in athens and open the stage to so many amazing security professionals to speak network educate and participate every single year please do listen to our sponsors introduction carefully as you might identify work and or collaboration opportunities jessica over to you hi y'all thank you for joining besides

athens 2021 i am jessica russo and i would like to present to you the sponsors who have made besides athens possible all these years let's start with 12 sec with a platinum sponsor this year this is the sixth time that they are supporting us and we are grateful to have them on board since the very first besides athens founded in 2012 in athens by a group of cyber security enthusiasts 12 sec provides quality information security services worldwide specializing in information security assurance security management and infosec training services in a short period of time 12sec has partnered up with several forbes global 2000 companies government agencies and intergovernmental organizations worldwide securing their data from cyber threats

proving in the process that the company motto our work will do our marketing for us actually works 12 sec has provided its expertise in various sectors including finance telecoms retail security shipping government and last but not least law enforcement our second platinum sponsor is netitude which is supporting us for the first time and we couldn't be more thrilled to have them on board netitude is a global pen testing red and blue teaming provider netitude is a global pen testing red and blue teaming provider netitude's consultants work with the world's largest central banks stock exchanges governments and more to compromise critical national infrastructure before real threat actors do custom-built tooling and exploits are created by netitude's

search and development team to achieve maximum compromise meanwhile netitude's blue team defend important networks around the world all day every day the red and blue teams are supported by a dedicated threat intelligence team to ensure that they can both perform and defend against the latest tactics techniques and procedures used by real-world threat actors natives just opened their offices and are in athens and are currently looking to expand their pen testing team whether you are a graduate or a seasoned pen tester feel free to reach out to them for an informal chat passing on to our gold sponsors we are excited to present encode who is supporting us for the second time it's great to have you on board again

encode specializes on targeted cyber threats and stands out with its proprietary technology expertise on cyber security and multi-year experience across vertical industries coupled with an ongoing innovative security research and its highly qualified and talented people with global operations and local expertise encode combines its cutting edge technology with best of breed cyber security operations and services to augment its clients cyber security capabilities for continuous and effective management of advanced cyber threats encode has implemented more than 1800 projects and its portfolio exists 200 clients globally encode has been recognized as one of the five pure play mssps in europe by forester and market leader in detection and prevention and in incident response and forensics elastic is a gold sponsor as well

and we are excited to have their support for the second time in a row it's always great news to have international organizations of scale supporting our efforts elastic is a search company built on a free and open heritage everyone can get started with elastic products and solutions quickly and frictionlessly elastic offers three solutions for enterprise search observability and security built on one technology stack that can be deployed anywhere from finding documents to monitoring infrastructure to hunting for threats elastic makes data usable in real time and at scale founded in 2012 elasti is a distributed company with elasticians around the globe learn more at elastic.com bitcrack comes next which has stepped up to become a silver sponsor and we are

grateful for the support for the fifth time big crack cyber security is a provider of bespoke security solutions and services to all industries the highly skilled staff range from hackers to security architects governance and training experts and security operations center analysts their mission is to help companies secure themselves and defend against threats while enabling the business here comes algo systems who has been a trusted supporter and very active member of our community for the third time algosystems is a leading solutions provider with an extensive experience and expertise in ict and cyber security the company is driving the path forward to a new cyber security era with numerous skilled and certified cyber security professionals a state-of-the-art security operations

center multiple partnerships with leading international vendors and an all-inclusive cyber portfolio you can learn more about algo systems on their website which is www.algosystems.cr log sale is a new member of the besides athens community and we are excited that they have reached out to us to get engaged with our speakers and our sponsors logsdale is an international community that turns raw data into actionable insights with its next generation cloud platform supporting analysis monitoring troubleshooting incident response and security operations the company has offices in athens brussels and necosia in cyprus and provides also i.t operational and security consulting services to any private or public organization such as red teaming incident response penetration testing vulnerability management securing their

digital transformation future with extensive experience and expertise in the marine time governmental financial and technology sector logsdale team has accomplished high-level security projects and significant partnerships worldwide adopting an effective research and development approach is of utmost importance and priority and the ultimate goal is to stay always ahead of the evolving cyber threat landscape moving on to our bronze sponsors we'd like to thank them for their continued support starting with yes we hack we are excited to have on board for the second time an international back bounty organization yes we hack is a global back bounty and vdp platform founded in 2015 yes we hack was created by hackers for hackers they are committed to provide quality

programs for our community and they are working very hard to be the best and fairest back boundary platform out there yes we hack is not just the backbone platform they also provide community tools and services to ease and promote responsible vulnerability disclosure and non-partisan back bounty and vdp search engine called firebounty.com a hiker playground where anyone can create challenges called dojo and many more on github marimezo comes next and it's it is joining us for one more time and we are grateful for their continued support many mezzo provide instructor-led cyber security training to both industry and individuals in the fields of iot and media systems forensics and design as well as pen testing reverse engineering

forensics and security engineering all courses are expert instructor and mentor-led with small sizes to ensure all candidates receive the level of one-to-one teaching that they require unicef college is joining besides athens for the first time so welcome aboard knowledge innovation evolution by these three words unicef college chooses to describe itself the new educational institution which aims at promoting education one step further with strategic partnerships and a creative spirit it is introducing a new culture in education based on the synergy between academic knowledge practical application and individual skills the unicef college team consists of recognized academics successful professionals and executives in education and the market with deep knowledge of their subjects for them in the unicef college master

yourself is more than a motto it's a way of setting new rules and redefining what success an evolution is unicef college belongs to the group the largest purely greek an internationally recognized certification body for individuals and management systems with activities in greece and cyprus unicef college currently offers in collaboration with staffordshire university the following master degrees mastery in computer science and cybersecurity mastering computer science software engineering and master in digital marketing management please keep an eye out on how to get your cpe certificate as if you are eligible for it unicert will sponsor 30 of your tuition fees for a cyber security master's degrees at unicert and here comes our community supporters it wouldn't be a security besides athens

if it wasn't for our community supporters cheers to the other besides events that have endorsed us including besides london amsterdam manchester dublin and to all the universities and organizations in greece and abroad as well as a and owasp next one on the list that deserves special thanks is our ctf partner which is hack the box we are very excited to have a long-standing partnership with hack the box offering trainings and ctf challenges tailored to the security besides athens community we are always very excited to have awasp the open web application security project a special thank you to owasp london's up chapter for the support we have one more special mention and this is for anissa it is an honor to

have anissa the european union cyber security agency supporting security besides athens as one of its key mission objectives is raising awareness to european union citizens on cyber security matters a special mention and a big thank you to anissa for their support through the years and for believing and boosting the information security community in greece and beyond once more many thank you to all of our sponsors for making besides athens possible this year and all the years before we greatly appreciate your sustained support and to all of the new community members out there if your organization is com considering to initiate a collaboration with us please do not hesitate to reach out to our team to discuss how to become a sponsor or

supporter thank you very much for listening to me and i hope you enjoy the conference today without any further ado here is a glimpse of what happened in the previous years we started small with the dream to bring together empower and mature the infosec community in greece we had several initiatives including getting involved in empowering and supporting the first national greek hacking team for european cyber security challenge this year it has gone kind of viral our t-shirt design and we're very glad and happy about it paraphrasing a well-known saying playing around a little bit we made a t-shirt design that reads us beware of the greeks which can also be read as geeks bearing iot gifts as we had many requests for

t-shirts we will communicate through our mailing list following the following week which online retailer we will choose to enable people to order them hope you like them and hope you order them if you want to be part of security besides you can as the whole framework is to enable individuals to drive the events save its content encourage participation and provide a great opportunity to network we are the only hands-on information security cyber security conference in greece by the security community for the security community and most importantly we're all volunteers last but not least security besides athens respects your privacy and all who want to engage and participate you can find our privacy policy on our

website and of course our code of contact which allowed us from day one to run a safe respectful and enjoyable conference for everyone as jessica mentioned we want your participation and support for next year the area you reach out to us the easiest is to find a sponsoring slot and shape how and in what way you want to sponsor the conference this is me and as i say at every opening i put myself here as i am the one responsible for making sure security besides athens meets everyone's expectations and we run a conference which has already gained an exceptional reputation in greece and abroad the easiest and most convenient way to reach out to me

is to follow me on twitter which i use only for discussing and sharing cyber security related content allowing all of us to build a strong knowledgeable and interactive network in other words used to itself with a targeted approach to build a live real-time feed of all the cyber news all the security professionals you want to engage with are sponsors of course and definitely our speakers to the point you can start following our bro team and our volunteers which this year had had to go the extra mile to make sure security besides athens 2021 becomes a reality very important for all of you who want to qualify and receive the security besides athens 2021 cpe certificate that gives you

10 cpe credits you need to watch the live stream during the day in two random occasions during the conference today we will release two different forms the link to its form will be served during the live stream and the forms will remain open only for five minutes this is to minimize the risk of the form being abused those who sign both forms today will receive on saturday the 10th of july 2021 their cpe certificate as it was already communicated through our mailing list unicef college will offer 30 tuition fees sponsoring for an msc in computer science cyber security to the conference participants when you qualify for the cpa certificate we mentioned earlier on i really hope it

is clear enough and simple watch the live stream today and when we show you the form a and form b links later on simply go to the links to sign your name and email in the form that's it so stay tuned during the live stream all of our channels of communication can be found on our website under the extras menu item most importantly you can find the track schedule under the cfp menu item as you see on your screens you can also switch between the main event which is today's lineup of talks and the pre-event talks and workshops we released earlier during the week you can find a track schedule at besides dot gr forward slash tracks dot php as you can

see on your screens i really hope you enjoy the conference and this live stream edition we are following up with our keynote speaker dr najwa araz who is actually half greek and it is safe to say one of the geniuses of our generation naswa leads quantum and post quantum research at the nation level and you can find her bio under our truck schedule along with all other speakers on our website she's a brilliant cryptographer and today we'll do an introductory talk for all of you to enjoy over to you dr nigel