Come join us Tomorrow, Thursday November 9th from 7:00-8:00PM in 208 IST as we explore the world of Metasploit. Metasploit is a popular and commonly used open source vulnerability exploitation framework. It is most commonly used as a penetration testing tool to develop and execute exploits. We will be discussing the history of the framework, how it works, and will be going over some of the things that make this tool a staple in the Info Sec community. Feel free to bring your laptop and follow along with the presentation!

We will be holding our annual joint WIST/ IA Club Intro to Linux seminar tomorrow, Thursday, November 3rd at 7:30PM in 206 IST. We encourage everyone to bring their laptop and follow along! Don't worry if you do not currently have Linux installed, as we will be distributing Ubuntu 11.10 Live CDs. This seminar will begin with the history of the Linux operating system, we will then cover some key terminology, and will conclude will demonstrations of some key commands.

Have you ever wondered how Denial of Service attacks are used to bring down some of the largest and most secure websites in the world? Have you wanted to learn how such attacks are carried out, but were too worried about legal issues? Well then stop by this week's IA Club meeting, where you will have the opportunity to perform your own DoS attack in a contained environment. We will then cover mitigation techniques, so you can protect your own system from such attacks.

Damn Vulnerable Web App (DVWA) is a PHP/MySQL based web application that helps students learn web application security. It contains numerous vulnerabilities, including command execution, CSRF, file injections, SQL injections, upload vulnerabilities, and reflected and stored XSS attacks. This week we’ll be getting down and dirty with some of these vulnerabilities and learn how to better secure our web apps.

In the wake of the Donald Burgess affair, Yellow Sun Heavy Industries finds itself in an uncomfortable situation. The top secret plans for Project ThatsNoMoon are in the hands of an unknown Adversary, and the traitorous Donald Burgess has disappeared. Only by taking positive action of its own can Yellow Sun hope to salvage the situation… and save the world. The key to foiling the adversary and saving the world as we know it lies in our hands... Well actually it lies in the packet capture we have been given. Let's do this!

Did you ever consider the information security risks and vulnerabilities associated with a sledge hammer? Or simply the keyboard and mouse? Most InfoSec efforts are focused on defending and attacking via networks, but people forget how fragile the systems they use can be. Join the Information Assurance Club as we explore the realm of Physical Security and how it relates to your information.