BLACKSHIELD AWARDS

• No of presentations since Sept 2012 (Last Blackshield): 89
• No of unique speakers: 49 people!
• No of available venues to conduct meets: 4
• Average count of people attending the meets: 55
• No of humla sessions conducted: 10
• No of Bachaav sessions conducted: 2 (no other chapter has this)
• No of puliya sessions conducted: 1 (no other chapter has this)
• No of Special sessions conducted: 3
• No of hacknights: 1 (no other chapter has this)
• No of humla vs bachaav: 1 (no other chapter has this)

The Bangalore chapter has had the following events:

Bachaav:

• Wordpress Bachaav: Anant Shrivastav - 30th Nov 2013
• Javascript Bachaav: Ahamed Nafeez - 21st Dec 2013

Humla:

• Javascript Bachaav: Ahamed Nafeez - 21st Dec 2013
• Android Framework for Exploitation: Aditya Gupta & Subho Halder - 06th July 2013
• Browser Fuzzing: Anil Aphale - 10th Aug 2013
• Browser Fuzzing: Anil Aphale - 31st Aug 2013
• Python for Pentesters: Prasanna K - 21st Sept 2013
• Python for Pentesters: Prasanna K - 28th Sept 2013
• Concentrated SQL Injection: Riyaz Walikar - 12th Oct 2013
• Concentrated SQL Injection: Riyaz Walikar - 9th Nov 2013
• XML/XPAth Injection: Amol Naik - 23rd Nov 2013
• Network Pentesting ft. Nmap - Sudhir Babu & Rupam - 1st February 2014

Puliya:

• Basics of Linux command line, git, ufw, vim, MySQL: Akash Mahajan - 07th Dec 2013

Special Talks/Hacknights:

• Infrastructure Op Security: Tools and Techniques: Gaurab Raj - 15th June 2013
• Javascript hacknight: Lavakumar, Riyaz, Prasanna - 3/4th August 2013
• Surveillance and Privacy: Jacob Appelbaum - 28th May 2013

- Setup a booth and evangelized null community and various activities at JsFoo conference Booth (full day) 20th and 21st Sept

- First ever bachaav vs humla scheduled on the 25th Dec. Anant and team will setup, fix and harden for 4 hours, Riyaz and team will attempt to break stuff, discuss findings and learn.

- Average of 55-60 attendees for the meets every month consistently.

- Average of 50 registrations for the humla and bachaav meets.

- Live streaming of null meets using GotoWebinar.

- 4th year celebration of null Bangalore chapter on 24th Aug 2013, we have never missed a single meet since Aug 2009.

- Meets go on till 2:30 PM at times, starting at 9:30 AM and participation is very active.

- Attendees are vocal, give feedback, volunteer talks, take up challenges and decide next months meets.

- Most code submission to bitbucket.org/null0x00 is from the Bangalore chapter

- Most subreddit submissions to /r/null0x00 is from the Bangalore chapter.

- The meet on 18th January 2014 had the largest audience at Bangalore - 87 attendees made it to the meet. We are moving to a bigger room next month onwards.

• Data Leakage Prevention initiatives within the IIFL Group
• Implementation of APT control initiatives
• Implementation of Threat Management Solution (CNAM) in the IT Infrastructure

• Rated no 1 by CRN for the consecutive 5 years (2009, 2010, 2011, 2012 & 2013)
• Voted as "King of Channels" by DQWeek (2013)
• GVK Alliance Networks 'The Remarkables - Entrepreneurship Award' (2013)
• Brands Academy Entrepreneurship Excellence Award 2012
• 'Young Entrepreneur' Award by Army Institute of Technology
• Maharashtra IT Award 2009
• Emerging India Award 2009
• Giants International Award 2009
• Deloitte Fastest 50 Award 2010
• First Generation Entrepreneurs Award (2002)
• GS Parkhe Industrial Merit Award 2009 (MCCIA)
• Business Today's Best Innovation Award
• Red Herring Asia 2009 - 100 Finalist

Rama has over 20 years of experience building and evolving engineering departments at leading security organizations. He has made significant contributions to the security field in his various roles at Barracuda Networks and Narus, a wholly owned subsidiary of Boeing.

At Barracuda Networks, Rama built security programs and integrated the Barracuda acquisition of NetContinuum, a vendor of Web firewall appliances. During his tenure there, he doubled the revenue of products handled by India R&D to approx. $40 million USD.

At Narus, Rama is helping the company address the changing environment of cyber threats, policies and customer needs. He is leading the engineering efforts on key technologies including high-speed data integration and machine learning. Through these efforts, he is delivering next generation security products that address the evolving challenges of today and tomorrow's cybersecurity landscape.

Rama is an active member of TiE. He has also served as guest faculty at the Indian Institute of Management and VNIT, speaking on network and application security.

Rama is pursuing a diploma in Cyber Law and Forensics from the National Law School of India University.

CERT-K act as nodal agency for monitoring various cyber security related matters for Government of Kerala, Largest e-ready state awarded by Data quest in 2013.

Activities of CERT-K are Vulnerability Reporting, Incident Reporting, Incident Analysis, Vulnerability Assessment of various Kerala Government Websites, Log analysis,Coordination with CERT-In and HITECH CELL in countering cyber crimes.

Last year CERT-K has carried out more than 200 security audits and VA for different government agencies.

Manoj Abraham is a senior officer of the Indian Police Service and has served in various capacities as chief of police of the cities of Cochin, Trivandrum, and Quilon. His community policing initiative was recognized with a special award in 2009 by the IACP. He received the Man of the Decade Award in 2011 for the Success in Community Policing in Kochi City. He is the backbone behind the first Private Public Partnership Model Security Conference for c0c0n 2010, 2012 and 2013. Presently he is working as IGP, HQ, Kerala Police in Thiruvananthapuram City.

Rasheed, Heads the team that conducts VIPT on webservices and applications owned by Kerala State. His team has conducted more than 150 security audits and pen tests in financial year 2012-13.

This team also acts as the Security consultants for state owned data centers in Kerala.

Cert-K Team was set up in 2010 on direction from Govt of Kerala, under Department of IT. Under his guidance the team was able to release a strict Web security policy for Govt Agencies in 2013, which was circulated as a Government Order.

The team is also one among the main sponsors of International Security Conference COCON-13 held in September 2013.

Pete Herzog is the founder of the ISECOM a non-profit entity, who provides the results of their security research to the world.

Pete is the author and the catalyst behind many renowned research - as example the OSSTMM, which is today the international de-facto standard for proper security-testing and - metrics, based on scientific research.

Pete is an inspiring teacher, leader and friend - he encourages by example he is the catalyst for new ideas. He has influenced the security eco-system over the past decade with his achievements and his work.

He has not only questioned old security habits - he also gave us the tools to find our own answers!

Vivek Ramachandran had discovered the Caffe Latte attack, broke WEP Cloaking, a WEP protection schema in 2007 publicly at Defcon and conceptualized enterprise Wi-Fi Backdoors.

He is also author of the book "Backtrack 5 Wireless Penetration Testing", "The Metasploit Megaprimer".

Vivek currently runs the SecurityTube.net & pentesteracademy.com which provides a knowledge sharing platform on various diverse information security topics. He also conducts in-person trainings in the US, Europe and Asia.

In a past life, he was one of the programmers of the 802.1x protocol and Port Security in Cisco's 6500 Catalyst series of switches. He was also one of the winners of the Microsoft Security Shootout contest held in India among a reported 65,000 participants. He has also published multiple research papers in the field of DDoS, ARP Spoofing Detection and Anomaly based Intrusion Detection Systems.

Vivek's work on wireless security has been quoted in media. He has spoken/trained at top conferences around the world including Blackhat USA and Abu Dhabi, Defcon, Hacktivity, Brucon, ClubHack, SecurityByte, SecurityZone, Nullcon, C0C0n etc.

Mateusz (et al.) is driving a fuzzing-at-scale effort which helped find and fix a large amount of bugs:

• http://j00ru.vexillium.org/?p=2211 - 1120 fixes in FFmpeg
• http://j00ru.vexillium.org/?p=1175 - various PDF readers
• http://j00ru.vexillium.org/?p=1507 - again various PDF readers
• http://www.google.com/about/appsecurity/research/ - search "Jurczyk"

In addition to that, he performs cutting edge security research.
The best example is his (et al.) Pwnie-awarded Bochspwn research:

• http://j00ru.vexillium.org/?p=1695
• http://j00ru.vexillium.org/?p=2084
• http://j00ru.vexillium.org/?p=1880

He also contributes to the community:

• Frequently publishing his research and presenting at various conferences. (see http://j00ru.vexillium.org/)
  Please note that this includes not only research, but also things he tried but didn't work out, which is rare and very important (e.g. http://j00ru.vexillium.org/?p=2105).
• Keeping an up-to-date list of system calls for Windows kernel and its subsystems - http://j00ru.vexillium.org/?p=2197

And he is a part of CTF scene - he is the 2nd captain of the Dragon Sector CTF team (see https://ctftime.org/team/3329).