Hacktoberfest'24 _ GDG on Campus BU.pptx

welcomes you to HACKTOBERFEST !!

What is Hacktoberfest ?? Hacktoberfest is an annual, month-long celebration of open-source software development, held every October, which encourages developers of all skill levels to contribute to open-source projects hosted on GitHub and GitLab.

t hen w hat’s Open Source?? Open source refers to a software development model where the source code is made publicly available for anyone to use, modify, and distribute. Open source projects are often developed collaboratively by a community of developers and contributors. The idea behind open source is to promote transparency, collaboration, and continuous improvement.

WHY Open Source?? Real-World Experience: Open-source contributions let students apply classroom knowledge to real-world projects, gaining practical coding and problem-solving skills. Increases Legitimacy: Your work is publicly visible on platforms like GitHub, providing proof of your coding skills and commitment, boosting credibility with recruiters. ?

WHY Open Source?? Networking: Collaborating on projects connects you with industry professionals and other developers, opening doors to mentorship and job opportunities. Strong Portfolio: Contributions show real project experience, enhancing your portfolio and making you stand out for internships and jobs. ?

PAR BHAI START KAISE KARU??? GIT KAISE CHALATE HAII??? Best Way? Cheat Sheet. ( check this out )

Time to get our hands dirty!!

LET’S INSTALL GIT (i mean we asked you to do it pehle se) (angri 😾 )

Which of the following is a popular open-source web browser? A) Safari B) Internet Explorer C) Mozilla Firefox D) Google Chrome

Which open-source office suite is considered an alternative to Microsoft Office? A) LibreOffice B) Google Docs C) Apple iWork D) WPS Office

Who is considered the creator of Linux?

What version control system is commonly used in open source development?

MERN STACK??

Git and Node js Installation

Node js ?

Javascript Runtime What does it actually change in development NPM contains over 1.5 million packages Cross Platform ?

HTML, CSS, JS and now WHAT ?

REACT -Facebook, 2013

Component based Javascript library Simplicity in its component Based structure (JSX) Community help Various frontend issues on big orgs React in OS :

Sample Contribution ;)

Steps 1- Fork the following repository

Steps 2- Clone it using git git clone <repoLink>

Steps 3- Follow along (installing packages ,running the code and doing some changes) 4- git status 5- git add <directory> 6- git commit -m “my first commit” 7- git push origin main 8- Follow along

FAQs

OSINT????

What is OSINT (Open Source Intelligence)

(^.^) OSINT refers to collecting and analyzing publicly available data from Open sources.

It isn’t A Modern Technique

World War II

Open sources. Person Company Organisarion Social media

Most Popular Tool For Accessing OSINT

Google Dorking

Resource: OSINT FrameWork

Respect privacy laws Avoid malicious uses Ensure OSINT is conducted within legal boundaries

A Cyber Security Analyst

Early Threat Detection Vulnerability Assessment Threat Intelligence Sharing Tracking and Monitoring Cybercriminals Importance of OSINT in Cyber Security

Threat Hunting and Early Detection Incident Investigation Cybersecurity Awareness and Reporting A nd many moree… What does a cyber security analyst do with OSINT

On Campus • Bennett University GROW with G O O G L E Grow, Learn, Connect TOGETHER Nilay Gupta GDG on Campus Organiser/Lead

Welcome Everyone!

this talk, What did we just do? How to OSS your way?? GSoC Honeynet’s IntelOwl Some more on GSoC :P

fork->clone->install->run->

Ask the right questions (literally!!)

Bad questions: These questions won't get you too far in an online communities. (Rule of thumb: Try to not be lazy and do your research!) "Bhaiya bhaiya, Meine thodi C++ ki hai mein GSoC kaise karu?" → Truly answering this requires research “What is open source/gsoc?” → Easy to google "Bhaiya roadmap bna doge hamare liye?" → Easy to google "installing and setting up arch isn't even that tough. Why the ego?" → too brave

Good questions: (Rule of thumb: Always google your questions first and try being specific.) - "Hey, My opensearch instance isn't working. It is giving xyz error that I think is because of abc" → Precise - "I know this should be obvious but it isn't, where does a smart contract run it's code? I am not sure about this because I can't believe that it runs the same code everywhere. That's inefficient!" → The answer to it is actually pretty interesting. - "How do computers even generate random numbers? I know it has something to do with seeding but how do kernels even come up with the seeds?" → At least shows that you tried.

2. How do you get good enough’ ?

2. How do you get good enough’ ? (that's the neat part, you don't :P)

3. How to get into FOSS ?

Basic guidelines Find a project you like (algora.io, up-for-grabs.net, reddit, friends, GSoC projects etc) If you're new to either the tech stack or the project, finding an issue with the tag "Good first issue" might be useful! Speak to maintainers and ask them help to set it up And get gud :)

4. Some cool programs :) (which you’ve been waiting for)

Remember, these are supposed to be entry level :) Google Summer of Code Students work with mentors from participating organizations, gaining practical coding experience while enhancing their resumes. LFX Mentorship LFX Mentorship, part of the Linux Foundation, offers a structured mentorship platform for students and early-career professionals. Hacktoberfest Hacktoberfest is an annual event that encourages students and developers to contribute to open source projects by submitting pull requests on GitHub in return for merch (stopped from this year) :)

DO NOT JUST EDIT A README FILE!!!!

IntelOwl Project Making the life of cyber security analysts easier

Say “hi” to the team :) Matteo Lodi @matte_lodi Threat Intelligence Team @0ssig3no Simone Berni mlodic 0ssigeno

Enjoying myself in the Cyber Security field!

Enjoying myself in the Cyber Security field! I have the best colleagues ever!

Enjoying myself in the Cyber Security field! I have the best colleagues ever! I’ll never stop learning!

Enjoying myself in the Cyber Security field! I have the best colleagues ever! I’ll never stop learning! We are like superheroes!

Enjoying myself in the Cyber Security field! I have the best colleagues ever! I’ll never stop learning! We are like superheroes! This is my dream job!

Unveil the reality

Unveil the reality Cyber security analysts are: understaffed overworked working 24/7 without work-life balance used as scapegoats do a lot of manual work which could be automated ref: Bitlyft ref: DarkReading ref: AECS

Automate, automate, automate 2017: Working in a little team of cyber security analysts Overwhelmed by security alerts Stuck in repetitive and boring tasks Burnt-out myself

Automate, automate, automate 2017: Working in a little team of cyber security analysts Overwhelmed by security alerts Stuck in repetitive and boring tasks Burnt-out myself We needed to start to automate our most common workflows.

The bottleneck: acquisition of threat intelligence context www.suspicious.domain.com suspicious file analyst

The bottleneck: acquisition of threat intelligence context www.suspicious.domain.com suspicious file analyst ... analyst

The bottleneck: acquisition of threat intelligence context www.suspicious.domain.com suspicious file a single button click or a single API request M a g i c S e c u ri t y T o o l analyst ... analyst analyst

We were looking for a tool Our requirements were:

We were looking for a tool Automated extraction of threat intelligence data from different sources Full-featured Web Application with user-friendly interface Our requirements were:

We were looking for a tool Automated extraction of threat intelligence data from different sources Full-featured Web Application with user-friendly interface Client library for easy integrations with other security tools High possibility of customization to allow different use cases Our requirements were:

We were looking for a tool Automated extraction of threat intelligence data from different sources Full-featured Web Application with user-friendly interface Client library for easy integrations with other security tools High possibility of customization to allow different use cases High level of scalability and speed Open source Our requirements were:

We were looking for a tool Automated extraction of threat intelligence data from different sources Full-featured Web Application with user-friendly interface Client library for easy integrations with other security tools High possibility of customization to allow different use cases High level of scalability and speed Open source Written with the most recent technologies Well maintained and updated Our requirements were:

IntelOwl was born Born in Certego at the start of 2020, it is a great example of a successful Open Source project: right now it is one of the most popular Threat Intel projects on GitHub (>3k stars). IntelOwl provides data enrichment of threat intel artifacts (IP, Domain, URL, files, PCAP, hash, etc).

IntelOwl solution www.suspicious.domain.com Wi thOUT Intel Owl suspicious file analyst ... analyst

IntelOwl solution www.suspicious.domain.com Wi thOUT Intel Owl With Intel Owl suspicious file analyst analyzers analyst a single button click or a single API request ... analyst

IntelOwl Repository & Tech Stack The most common (and open source) technologies and framework are used and we keep them constantly updated: Docker Python3 ReactJS Django ecosystem Celery PostgreSQL ElasticSearch Nginx Uwsgi Daphne RabbitMQ/SQS/Redis

IntelOwl: How to use the platform

IntelOwl: Phishing verification

Thank you for listening! intelowlproject/IntelOwl This presentation was reviewed and built together with our awesome team: Daniele Rosetti , Pier Giorgio Bergonzi and Martina Carella. The icons were collected from: FlatIcon Memes were generated with Imgflip @intel_owl

Happy?

What’s in a name ;) Google Developers Groups On Campus Organiser by G o o g l e Google Summer of Code 2024 at Honeynet with over 30,000 lines of code Smart Bu Hackathon #4, 2023 9 CGPA :P Founded a tech community in high school Fullstack, DevOps and Cloud [Java, Js, Ts, Go, Py, C++] Organised and hosted 20+ on campus events with my team <3 Reached over 10,000 students in the last 3 years BLAH, BLAH, BLAH----------------------------------------------->

THANKS FOR JOINING!! KEEP CONTRIBUTING !!!

Hacktoberfest'24 _ GDG on Campus BU.pptx

About This Presentation

Slide Content

Tags

Categories

Download

Quick Actions

Statistics

Related Slideshows

Hacktoberfest&#39;24 _ GDG on Campus BU.pptx

About This Presentation

Slide Content

Slide 1

Slide 2

Slide 3

Slide 4

Slide 5

Slide 6

Slide 7

Slide 8

Slide 9

Slide 10

Slide 11

Slide 12

Slide 13

Slide 14

Slide 15

Slide 16

Slide 17

Slide 18

Slide 19

Slide 20

Slide 21

Slide 22

Slide 23

Slide 24

Slide 25

Slide 26

Slide 27

Slide 28

Slide 29

Slide 30

Slide 31

Slide 32

Slide 33

Slide 34

Slide 35

Slide 36

Slide 37

Slide 38

Slide 39

Slide 40

Slide 41

Slide 42

Slide 43

Slide 44

Slide 45

Slide 46

Slide 47

Slide 48

Slide 49

Slide 50

Slide 51

Slide 52

Slide 53

Slide 54

Slide 55

Slide 56

Slide 57

Slide 58

Slide 59

Slide 60

Slide 61

Slide 62

Slide 63

Slide 64

Slide 65

Slide 66

Slide 67

Slide 68

Slide 69

Slide 70

Slide 71

Slide 72

Slide 73

Slide 74

Slide 75

Slide 76

Slide 77

Hacktoberfest'24 _ GDG on Campus BU.pptx