Palmetto Cyber Defense Competition 2016 Enterprise Meeting 28 January 2016 Jeff Sweeney PCDC Director Space and Naval Warfare Systems Center Atlantic (SSC Atlantic) Information Assurance Policy & Risk Management For PCDC Planning Purposes Only 1

2 PCDC 2016 PCDC will be at Trident Technical College On 9/10/11 April 2016 Enterprise Meeting Schedule: (every other Thursday at 10 AM at SRC) 11 February: Cooper II 25 February: Cooper I 10 March: Cooper I 24 March: Cooper I 7 April: Cooper I

2016 Participating Schools Collegiate – Sunday, 10 April High School – Saturday, 9 April Qualified through CyberPatriot: Blythewood? Wando Ashley Ridge – 2 nd place 2015 Home School Network South Aiken Palmetto Scholars Academy – North Charleston - 1 st place 2015 Stratford – Goose Creek Porter Gaud- Charleston Charleston Southern University – 2 nd place 2015 South Carolina State University The Citadel ECPI University Trident Technical College College of Charleston – 3 rd place 2015 South Carolina – 1st place 2015 Clemson 3

2016 Pro Day Participants Corporate – all confirmed Government Cyber National Mission Force NCDOC 33 rd Network Warfare Squadron? 4

5 Raspberry PI 2 B for High Schools Raspberry PI 2B $69.99Raspberry PI Project Kit $45.99 ▼ PI includes case Wifi adapter, power supply, SD card, and HDMI cable ▼ Kit includes breadboard, project book and numerous electronic assessories

PCDC 2016 Team updates ▼White and Blue teams still looking for volunteers ▼Gold Team  Continues to work on images and injects  Will move to CSRA on Aviation in Feb. Will need additional equipment by then  Still looking at whether we will utilize Blue Coat this year- Marcus?  Incorporating IXIA network traffic generation tool (Josh Thiry, lead) ▼Continuing to recruit Red Team members. Met with local lead Bryan Rhodes last week. ▼High School Blue Team Mentors  Mentors/schools will again have access to NETLAB training environment hosted at TTC  Matching Blue Team mentors and schools. Most schools already have corporate mentors. Looking for combinations of gov/corp mentors. Will have SPAWAR mentor day of competition.  Kick off mentor meeting should be next week. ▼AFCEA Updates – Ken Dilks: 6

Tentative SPAWAR Blue Team Mentors ▼Wando: Scott Beman, (Dennis Wilson, Alt) ▼Ashley Ridge: Dave Wallick (Bill Littleton, Alt) ▼Palmetto Scholars Academy: Scott West ▼Stratford: Vince Feaster ▼Porter Gaud: Scott Bell ▼Home School Network: Hank Osborne ▼South Aiken: Russ Barnes ▼Blythewood: Alan Deyoe? ▼Jason Weatherly will again be a roving Linux mentor 7

HS Blue Team Mentoring Curriculum 8 ▼High School Mentoring will begin in early February ▼Great site for Linux images: ▼NETLABs hosted at TTC. Sessions available 24x7 ▼Should meet for at least hrs. per week ▼Will get details on remote mentoring to the schools Intro to IT Security Windows Security How to Mitigate Networking Fundamentals/Password Security Linux Forensics Business practices/injects/scoring Reviewing Blue Team and Preparation Packets with schools Review of Critical areas (optional) Virtual Firewalls

Trident Tech College Center PCDC Floor Plan 9

PCDC 2016 ▼Need one pagers from sponsors for scrolling display ▼Collegiate Q&A sessions dates/times will be determined next week ▼Is CSRA going to provide office supplies again? ▼Need to schedule facility meeting with Trident Tech? ▼National Anthem and Honor Guard ▼2 imbeds from each College for Pro Day. Alternates list from TTC 10

PCDC 2016 Updates ▼Sunday VIP invite to Secretary of the Air Force Deborah Lee James and Monday VIP invite to General Brock have been drafted ▼2 nd Plasma scrolling through pictures from previous years in addition to scrolling display ▼PCDC logo swag (POC: Paul Wilbur)  Koozie ▼T-shirt color: Purple (81C) ▼Red Team has requested:  Antique Cherry Red (246C) 11

New This Year ▼Cyber Forensics Challenge with tablet as first prize ▼Cyber forensics will also be integrated into injects ▼Medical Information network will be scenario ▼Free Security+ test vouchers from COMPTIA ▼We will allow collegiate teams the option of having their advisors provide 15 minutes hands-off advice once during the morning of the competition for X points ▼Updated scoring engine, more points deducted as downtime increases ▼Will provide network diagram ▼No physical firewall (ASA). Firewall will be virtualized this year 5 12

13 PCDC 2016 ▼Checking to see if Pearson will be providing table, course info and free vouchers- playing phone tag ▼Colleges set up tables on Friday for students ▼Hotel update? ▼Bags and bottles – SPAWAR, looking for other items for goody bags ▼Need to coordinate with Pro-2-Serve to get updated plates on Challenge cup by Sunday night ▼Need music coordinator (Spotify acct?) and social media coordinator

Saturday, April 9, 2016 High School Competition Schedule  7:00 am – 7:30 am:Registration  7:15 am – 7:20 am: Team location drawing  7:20 am – 7:30 am:Blue Teams Briefing  7:30 am – 7:45 am:Opening Ceremony  7:45 am – 9:15 am:Initial Injects / Secure the Network  9:15 am – 3:30 pm:Operate Network Under Hacker Attacks  10:00 am – 11:00 pm:National Guard Presentation:  12:00 pm – 1:00 pm : National Guard Presentation:  3:30 pm – 4:00 pm:Red Team members visit Blue Teams  4:00 pm – 4:30 pm:Break/View Sponsor Booths  4:30 pm – 5:00 pm:Blue Team Presentations  5:00 pm – 5:15 pm:Red/Gold Team Debrief: Common Mistakes  5:15 pm – 5:20 pm: SPAWARSYSCEN Atlantic Executive Director and/or CO?  5:20 pm – 5:55 pm: Awards / Closing Ceremony 14

Sunday, April 10, 2016 Collegiate Competition Schedule  7:00 am – 7:30 am:Registration  7:15 am – 7:20 am: Team location drawing  7:20 am – 7:30 am:Blue Teams Briefing  7:30 am – 7:45 am:Opening Ceremony  7:45 am – 8:15 am:Initial Injects / Secure the Network  8:15 am – 4:15 pm:Operate Network Under Hacker Attacks  10:00 am – 11:00 pm: National Guard Presentation: (Rm507)  12:00 pm – 1:00 pm: National Guard Presentation: (Rm 507)  4:15 pm - 4:30 pm:Red Team members visit Blue Teams  4:30 pm – 5:00 pm:Break/View Sponsor Booths  5:00 pm – 5:30 pm:Blue Team Presentations  5:30 pm – 5:45 pm:Red/Gold Team Debrief: Common Mistakes  5:45 pm – 6:40 pm:Awards / Closing Ceremony 15

Monday, April 11, 2016 Pro Day Competition Schedule (Tentative)  7:00 am – 7:30 am:Registration  7:15 am – 7:20 am: Team location drawing  7:20 am – 7:30 am:Blue Teams Briefing  7:30 am – 7:50 am:Opening Ceremony – Senator Graham?  7:50 am – 4:30 pm:Operate Network Under Hacker Attacks  4:30 pm - 4:45 pm:Red Team members visit Blue Teams  4:45 pm – 5:00 pm:Break/View Sponsor Booths/Networking  5:00 pm – 5:15 pm: Red/Gold Team Debrief: Common Mistakes  5:15 pm – 5:35 pm: VIP – General Brock?  5:35 pm – 5:55 pm: Awards / Closing Ceremony 16

Cyber Forensic Challenge ▼Objective: Solve as many forensic scenarios as possible within the allotted time and accumulate the most points possible – 1 st place: Samsung Galaxy?  Participants will be provided access to a forensic scenario exercises ranging in difficulty. Each exercise will require the participant to utilize different forensic techniques to uncover a designated “flag”. Flags will be unique to each scenario which can range from date/time stamps, hashes, passwords, etc. Discovered flags will be submitted for grading and will be rewarded with the appropriate point value if the correct flag was provided ▼Challenge examples:  Hidden data: Find a specific “Key” word  Hashing: Identify the correct hash of a file  Metadata: Identify a particular embedded metadata element  Data Recovery:Recover a specific filename  Password Cracking: Crack a password representation to discover the plaintext password  Malware Analysis  PCAP Analysis  Memory Analysis ▼Any attendee at the PCDC event may compete ▼Excludes SPAWAR Employees and High School PCDC team members ▼Must be completed within the day of the competition ▼Individual participation only: Cannot receive help from others ▼Disqualification: Hacking the competition equipment, attacking other competitors or cheating (i.e. teaming, copying from other competitors, etc) 17

SetupSetup Server 1)Access to challenges 2)Instructions 3)Submissions 4)Scoring Engine/Leaderboard [Webserver, File Server, DHCP… Server 1)Access to challenges 2)Instructions 3)Submissions 4)Scoring Engine/Leaderboard [Webserver, File Server, DHCP… Admin BYOD 5 systems provided (SIFT) 18

PCDC 2016 Team Leads ▼Director – Jeff Sweeney ▼Gold – Josh Lewis ▼Red – Sam Cappella/Bryan Rhodes ( ) ▼White – Andrew Osti ( ) ▼Blue/High School Coordinator – Dennis Wilson ▼Collegiate Coordinator – Vince Van Houten, (Deputy Director) ▼Pro Day Coordinator – Bob Miller, (Deputy Director) ▼AFCEA POC – Ken Dilks ▼AFCEA President – Don Pearsall 19

Thanks to our 2016 Corporate Sponsors !. 20

Thanks to our 2016 Corporate Sponsors Dilks - Simone, Inc

22 Important Links ▼ PCDC Website: pcdc-sc.com ▼ PCDC Facebook : ▼ PCDC Twitter : ▼ Cyber Patriot : ▼ AFCEA : ▼#PCDC

PCDC Primary POCs ▼ Jeff Sweeney, SSC Atlantic, PCDC Director , ▼ Bob Miller, SSC Atlantic, PCDC Deputy Director , ▼ Vince Van Houten, SSC Atlantic, PCDC Facilitator, Collegiate Coordinator , ▼ Josh Lewis, SSC Atlantic, PCDC Gold Team Tech Lead , ▼ Whitney Bridges, AFCEA Treasurer, Alutiiq , ▼ Ken Dilks, AFCEA PCDC Lead, Dilks-Simone, Inc , ▼ Tonya Davis, Trident Technical College , ▼ Don Pearsall, AFCEA President , ▼ Dennis Wilson, SPAWAR, Blue Team Mentor Lead, High School Coordinator , 23

24 Wrap Up ▼Thoughts? ▼Big Ideas? ▼Innovations? ▼Questions?