From Fedora Project Wiki

(Created page with "Placeholder for 3 November 2017 Fedora Red Team meeting agenda and minutes")
 
No edit summary
 
(2 intermediate revisions by the same user not shown)
Line 1: Line 1:
Placeholder for 3 November 2017 Fedora Red Team meeting agenda and minutes
== Minutes ==
* [https://meetbot.fedoraproject.org/fedora-security/2017-11-03/red_team.2017-11-03-14.01.html Minutes]
* [https://meetbot.fedoraproject.org/fedora-security/2017-11-03/red_team.2017-11-03-14.01.log.html Logs]
 
== Agenda ==
 
* State of the SIG
** Reminder that SIG page is at https://fedoraproject.org/wiki/SIGs/Red_Team
** ELEM continuing to mature
** CTL alpha code posted with some results
** Red Team SDK
** New members and community +1s
* Active projects
** SDK
*** Helper and common functions
*** Trying to make it useful generally for red teamers
** ELEM - Enterprise Linux Exploit Mapper
*** Demoed at Defense in Depth 2017
*** Exploit curation crowdsourcing ([https://trello.com/b/1fbRYkiQ/exploit-curation Trello board]) now being populated by SDK, needs work
** CTL
*** Alpha code posted
*** Buggy, but being tracked in issues
*** Initial results posted
*** Work to be done before beta
**** Reliability
**** Function scoring
**** Branch frequency counter
**** Average function length
**** Distribution
** PTES
*** Needs to be pursued, using internally for planning
** Reference Architectures
*** Internal copy exists, need to prep for release
*** Action for this month
** Pen tests
*** Eclipse Foundation
*** Looking for other clients who would like a pen test so we can better update PTES
* Team to-do
** Order swag, looking for recommendations, probably hats (outstanding)
** Need to get team calendar set up (done!)
** Better document ELEM (outstanding)
** Add more instructions to Trello for curation crowdsourcing (done!)

Latest revision as of 13:36, 7 November 2017

Minutes

Agenda

  • State of the SIG
  • Active projects
    • SDK
      • Helper and common functions
      • Trying to make it useful generally for red teamers
    • ELEM - Enterprise Linux Exploit Mapper
      • Demoed at Defense in Depth 2017
      • Exploit curation crowdsourcing (Trello board) now being populated by SDK, needs work
    • CTL
      • Alpha code posted
      • Buggy, but being tracked in issues
      • Initial results posted
      • Work to be done before beta
        • Reliability
        • Function scoring
        • Branch frequency counter
        • Average function length
        • Distribution
    • PTES
      • Needs to be pursued, using internally for planning
    • Reference Architectures
      • Internal copy exists, need to prep for release
      • Action for this month
    • Pen tests
      • Eclipse Foundation
      • Looking for other clients who would like a pen test so we can better update PTES
  • Team to-do
    • Order swag, looking for recommendations, probably hats (outstanding)
    • Need to get team calendar set up (done!)
    • Better document ELEM (outstanding)
    • Add more instructions to Trello for curation crowdsourcing (done!)