Birthday CTF

Our birthday CTF is a completely FREE to play DevSecOps hacking competition to celebrate our 2nd birthday!

We will be running it from our offices in Northallerton, but anyone can play over the internet.

Head in the Clouds

In partnership with Gravitas Recruitment, Simon is presenting a virtual talk on DevSecOps.

In this talk, we will discuss how security tools and practices can be layered into DevOps to ensure that risk is managed but the flow of work is not unnecessarily constrained. We will talk about how you can automatically scan applications and environments for vulnerabilities, enforce robust frameworks and build better processes so security doesn’t fall between the gaps.

OWASP Newcastle

Simon is giving a talk on “An Intro to DevSecOps” at OWASP Newcastle!

OWASP Newcastle returns with two talks lined up for a fantastic evening.

Robin Fewster will draw on his experience to discuss Threat Modelling approaches and tooling before our very own Simon Gurney discusses how we can reward developers for developing securely, rather than punishing them when they dont!

DTX Manchester

Simon and Daniel will both be attending DTX Manchester and giving their joint talk on automating security through DevSecOps.

DTX has been a fantastic conference for us in the past, and we are looking forward to our return this year!

BSIDES Dublin

Daniel will both be talking about subdomain takeovers, a novel attack where hackers take over your vulnerable subdomains to steal user cookies and impersonate your brand.

We’ve also built a tool to help, see dnsReaper

BSIDES Cheltenham

We are BADGE SPONSORS this year!

Simon and Daniel will both be attending BSIDES Cheltenham this year as we have two talks lined up!

An Intro to DevSecOps
Daniel discusses how DevSecOps can reduce risk by identifying security issues as early as possible.

Building the BSIDES Delorean badges
Simon walks you through building your own functioning PCB art, just like the functional delorean conference badges we have built.

DevOpsDays Birmingham

Simon will be sharing his experience detecting leaked secrets at scale!

Having secrets, passwords and certificates in your codebase is a bad idea (even if they’re private!)

Join us as we discuss how can we detect these secrets and how should we handle the secrets we find.

Live Hack Demo (Cloud)

Witness a live cyber-attack simulation and hear from the experts on what you can do to both respond to a cyber incident and protect yourself.

We will show you a live cloud hack against aws from both the perspective of the hacker and the victim.

With this new perspective, we will show you this attack can be stopped in multiple places.

With 25 years of police experience, Steve Leach from the NEBRC will also discuss the e-crime he sees impacting businesses.

Cyber by the Sea

Panel discussion: The specific challenges of cyberspace for small businesses: How can we improve resilience?

Simon will be sharing his experience protecting small businesses from the current cyber threats in this panel discussion.

OWASP Newcastle

Simon is giving a talk on “Driving the most out of DAST” at OWASP Newcastle!

Unlike SAST and IAST, DAST can be a difficult tool to implement and configure in DevSecOps pipelines. In this session, we will explore why this is and what the real prerequisites are to getting meaningful results from DAST tooling.

Simon will explore a few different DAST tools, including ZAP, and discuss how using functional testing scripts can help navigate your apps and drive out DAST findings.

DTX

The Team will be out in force to bring our DevSecOps CTF to DTX!

We will have 5 terminals, and plenty DevSecOps puzzles for players to solve! Of course, the prestigious Punk flashy badges will be up for grabs!

OWASP Toronto

Daniel is giving an in-person talk on “An Intro to DevSecOps” at OWASP Toronto!

This is the Toronto Chapter for OWASP.

The Open Web Application Security Project (OWASP) is a worldwide not-for-profit charitable organization focused on improving the security of software.

Live Hack Demo

Located at Coney Street, York, YO1 9QL, The Guildhall provides the perfect setting for this captivating demonstration.

Our experts will walk you through a real-life cyber attack, discuss actual attacks that have happened to businesses in our area and demonstrate how they can be prevented, giving you valuable insights into the ever-evolving world of digital security.

Heropreneurs

We are very excited to be able to share that we are finalists for this year’s Heropreneurs Awards.

Simon and Melissa will be in attendance on the night to represent Punk Security and all the fantastic work our veterans and serving reservists do and have done in the UK armed forces.

NEBRC End of year reception

The North East Business Resilience Centre is a police-led, not-for-profit organisation that provides 24/7 cyber security support to SMEs.

We’ve worked closely with the NEBRC at events throughout the year, delivering engaging talks and demonstrations to build cyber security awareness and help businesses build resilience. We will be in attendance at their final event of the year to network with the SMEs we’ve helped throughout the year.

TEESSIDE EXPO

How to stay safe from ransomware: a look under the hood of cybercrime

Most businesses don’t understand cyber crime, and their own cyber risk, until it’s too late. In this seminar, Simon will show you how e-crime gangs earn millions through simple, yet devastating, cyber attacks against businesses of all sizes.

Birthday CTF

Our birthday CTF is a completely FREE to play DevSecOps hacking competition to celebrate our 3rd birthday!

We will be running it from our offices in Northallerton, but anyone can play over the internet.

More coming soon...