TulsaTechFest 2008


Home
Agenda
Speakers
Prizes
Sponsors
Tracks
FAQs
Press Kit
  

 Featured Speakers
Chris Bernard, User Experience Evangelist, MicrosoftBrian Gorbett, Architect Evangelist, MicrosoftRob Howard, Microsoft Regional Director, Microsoft ASP.NET MVP, an ASPInsider, Founder and CEO, Telligent
Jef Newsom, Co-Founder and the Agile Practice Leader, Improving Enterprises, Inc.Bill Vaughn, Microsoft MVP, INETA Speaker, Founder, Beta V CorporationLes Pinter, Microsoft MVP, INETA Speaker, Founder, Pinter Consulting
Chris Koenig, Developer Evangelist , MicrosoftZain Naboulsi, Developer Evangelist, MicrosoftPhil Wheat, Architect Evangelist, Microsoft
Jason Lee, Senior Java Developer, Sun MicrosystemsCaleb Jenkins, Microsoft MVP - Visual Developer ASP/ASP.NET, Training Mentor / Consultant, Improving EnterprisesBrad McGehee, Microsoft MVP - SQL Server, Director of DBA Education, Red-Gate Software
Brent Ozar, SQL Server Expert, Quest SoftwareClaudio Lassala, Microsoft MVP - Visual C#, Senior Developer, EPS SoftwareDave Nicollette, Senior Consultant, Valtech Technologies
David Walker, Microsoft MVP - Visual Developer ASP/ASP.NET, Technical Special in the Microsoft Practice Area, The Revere GroupDennis Bottjer, Microsoft MVP - Visual Developer ASP/ASP.NET, Software Solutions Architect, SpringPoint TechnologiesEd Blankenship, Microsoft MVP, Release Engineering Team Lead, Infragistics
Eric Shupps, Microsoft SharePoint MVP, Founder / President, Binary WaveRandy Walker, INETA Membership Mentor, Microsoft MVP, Owner, Harvest I.T.Raymond Lewallen, Microsoft MVP - Visual C#, Solutions Architect, EMC
Robert Boedigheimer, Microsoft MVP - Visual Developer ASP/ASP.NET, The Schwan Food CompanyTim Rayburn, Microsoft MVP - Connected Systems, Principal Consultant, SogetiBrett Schuchert, Senior Trainer, Mentor and Consultant, Object Mentor
Bryan Powell, Systems Engineer, Idera SoftwareJim Hudson, Senior Technology Evangelist, OakTree SoftwareRyan Hoegg, Senior Consultant, Valtech
Tina Mangham, Consultant, President - APLN Oklahoma, ValtechNoah Everett, Founder/CEO, NusoniBill Day, Director of Developer Products, Digital Reasoning Systems, Inc. (DRSI)
Brad Vernon, Owner - Shark Media, Web Developer, Bixby Telephone CompanyCuong Dang, Marketing Creative Director, Engage SoftwareDerek Lane, CTO, Semantra
Dustin Staiger, Creative Consultant, The Frontline GroupHenry Kenuam, Co-Founder / Chief Technology Officer, Engage SoftwareJayson Street, CISSP, GSEC, GCIH, GCFA, IEM, IAM, CCSE, CCSA, Security+, f0rb1dd3n
John Hale, Professor of Computer Science and Director, Institute for Information Security, University of TulsaKen Byrd, .NET Consultant and Trainer, TekFocusLuke Crouch, Software Engineer, SourceForge.net
Michael Lotter, SharePoint Solutions Architect, B&R Business SolutionsPatrick Renner, Project Manager, Engage SoftwarePaul Holser, Agile Technologist, Semantra
Rob Reynolds, Federal Home Loan BankRob Vettor, Microsoft .NET Architect/Senior Solution Developer, AvanadeTim Elrod, Founder, Ri0tnet Security
Larry Winters, Project Management Practice Leader and a Senior Consultant, The Persimmon GroupBecky Isserman, Terracon ConsultantsBen Scheirman, Principal Consultant, Sogeti
Carlos Moreno, Marketing Director, Evolution StudiosConnor Raus, President, Connexs CommunicationsMichael Morehead, Senior Sales Consultant, Oracle Corporation
Alex Pezold, CISSP, CNSS, MS, QSA, Director of Strategic Services, FishNet SecurityBrandon Burk, Systems Development Manager, Sonic CorporationBrian Dukes, Microsoft Certified Professional Developer, Engage Software
Buddy Lindsey, Jr., Waterfield TechnologiesChris Patterson, Software Architect, RelayHealthChuck Tryon, Tryon and Associates
Corey Roth, Enterprise Consultant, StonebridgeDru Sellers, Solution Architect, Federal Home Loan BankIan Robinson, Software Developer, Engage Software
Jason Townsend, Senior Analyst in Global Web Application Services, Conoco PhillipsJohn Eimer, Engage SoftwareKenyatta Clark, Senior Consultant, Valtech Technologies
Kyle Kelin, Senior Consultant, InfusionMark Jones, Director of Solution Services, Anyware Mobile SolutionsMark Watson, "Code Camp Junkie", Principal Consultant, Bizwax Solutions
Michael Paladino, Lead Application Developer, Eagle OneSaif Khan, Freelance Designer / ConsultantVance Lucas, Web Developer, Back40 Design, Inc.
Boyd Evert, Senior Associate, Connolly ConsultingRichard Oltmann, Senior Consultant / Principal Trainer, OakTree Software

Oct 9th - Track 06 - Data Security

Google to Pwnage in 60 minutes

Speaker(s): Jayson Street

Google:

*     v. To search for a term or terms using the Google search engine.
*     n. 1: A highly-used search engine that is considered the most effective on the internet by many. 2: The number 1, followed by 100 zeros.

Pwnage:

*     1. An alternate version of "ownage" derived from .pwn., a common typo for .own.. Term used mainly in online shooters, where one person is displaying superior and winning traits.
*     2. The act or state of perpetrating fierce and unholy domination against another, typically in a videogame setting but also applicable to system hacking, resulting in shame and embarrassment for the victim and his/her family until the end of time.

The Internet itself contains the very tools needed to attack your systems when you connect them to it. This presentation gives you an over the shoulder perspective as a network is attacked using freely available resources. You will get to watch as the same tools and techniques hackers use every day are applied systematically. You will see a hacker go from a simple Google search to an "owned" network in less time than an episode of "24". This presentation will walk through the two phases of network discovery and the three phases of network compromise. The process of reconnaissance and scanning will be demonstrated. Next, you will see how a network is actively explored and exploited. Finally, you will watch the process as an attacker expunges any evidence of his presence. Attacks happen every day. Millions of dollars are stolen, lives are harmed, and reputations marred. This is your chance to look over the shoulder as the hacker works and explains how it is done. You have heard the buzzwords and jargon, now watch it done in real time.

Definitions can be found at the Urban Dictionary. http://www.urbandictionary.com


Oct 9th - 10:30 AM
Oct 9th

Oct 9th - Track 06 - Data Security

Reverse Engineering Security Patches

Speaker(s): Tim Elrod

This talk is a in depth look at the process of reverse engineering a security patch to determine exploit vectors with the end result being a working exploit for the vulnerability.  The talk begins with an overview of the process and motivation behind not only reverse engineering but vulnerability discovery in general.  We then delve into the world for RCE (Reverse Code Engineering) with a look at the tools used by reverse engineers as well as some of the techniques employed. the talk ends with a live demo of reversing a QuickTime security Patch resulting in a full working exploit for the vulnerability.  The purpose of this talk is to educate people on this often vague practice of reverse engineering in the hopes that they will take adequate steps to improve corporate patching policies.

Oct 9th - 1:00 PM
Oct 9th

Oct 9th - Track 06 - Data Security

The Common Vulnerability Scoring System

Speaker(s): John Hale

The Common Vulnerability Scoring System (CVSS) is designed to standardize the evaluation and representation of information technology vulnerabilities.  In this capacity, it provides a common framework for characterizing the universal, temporal and environmental aspects of system vulnerabilities. This talk presents an overview of CVSS, describes its history, outlines its relevance to digital enterprises, and offers guidance on its intelligent application to corporate environments.


Oct 9th - 2:30 PM
Oct 9th

Oct 10th - Track 06 - Data Security

"If a network falls in the Internet does it make a sound?" (The top 5 threats you don’t hear enough about.)

Speaker(s): Jayson Street

With so much media attention given to laptop theft, stolen identities and spam you have to wonder what else is happening on the World Wide Web. Jayson pulls the curtain away from the dark side of the internet to give more information on the threats that are emerging and the ones that have been there but silently lurking and continuing to do harm.

Oct 10th - 10:30 AM
Oct 10th

Oct 10th - Track 06 - Data Security

COMikazi - The automated ActiveX fuzzing and Exploitation Framework

Speaker(s): Tim Elrod

COMikazi is a tool that will fuzz activeX controls for common vulnerabilities and if found will automatically generate metasploit exploitation modules for those vulnerabilities.  Combined with a webcrawler to find new ActiveX controls this represents a significant step forward in the field of automated vulnerability discovery and exploitation.

Oct 10th - 1:00 PM
Oct 10th

Oct 10th - Track 06 - Data Security

Data Security - Is your data out of control?

Speaker(s): Alex Pezold

Information protection is no longer an option; it is a requirement. As networks become more complex, so does the opportunity for serious security incidents. Data Security addresses the need for companies to thoroughly understand their business processes in order to appropriately protect their data. Without having a good understanding of how your company creates and uses data, IT security departments often find themselves applying incorrect controls or inappropriate levels of controls. Through Data Security initiatives such as Data Classification, Data Analysis, and Data Leakage Protection/Prevention, companies will enhance their understanding of the types of data their company needs to protect and how to protect it, while still enabling employees to efficiently function on a day to day basis.

Oct 10th - 2:30 PM
Oct 10th
  		 

 Proud Sponsors

At Microsoft, we`re motivated and inspired every day by how our customers use our software to find creative solutions to business problems, develop breakthrough ideas, and stay connected to what`s most important to them.


We specialize in serving experienced, career-seeking professionals in three primary disciplines: finance, technology and support services. We work with success-driven individuals to help align their unique talents with the ideal career niche – and even “walk them in the door” of a top-notch employer.


Oracle`s business is information—how to manage it, use it, share it, protect it. For nearly three decades, Oracle (NASDAQ: ORCL), the world’s largest enterprise software company, has provided software and services that enable organizations to get the most accurate and up-to-date information from their business systems. Today, Oracle has over 275,000 customers—including 8 of the Fortune 100—in more than 145 countries.


OakTree is a privately owned and operated information technology consulting and training firm that serves clients in Oklahoma and the surrounding states. Our company’s namesake represents the great potential existing in our relationship with each of our valued customers. OakTree is dedicated to building strong business partnerships with its clients and expertly assisting these clients in order for their business to thrive. OakTree brings to its customers proven project management techniques and provides training curriculum that helps clients meet eligibility requirements for Microsoft certification. OakTree Software Inc. is a Microsoft Certified Partner for Learning Solutions (CPLS), a designation meaning OakTree can offer training for the full suite of Microsoft’s market-leading technologies. The certification also reflects the expertise of OakTree’s talented staff, as well as the company’s market-driven focus on top-quality consulting training.


Tulas Community College


Red Gate Software makes simple tools for Microsoft technology developers and DBAs. The company`s product line includes tools for comparing and synchronizing SQL Server databases, understanding and fixing .NET code problems, and load-testing .NET web applications. Red Gate is a Microsoft Gold Visual Studio .NET launch partner and a VSIP partner.


TippingPoint addresses the security needs of complex network environments for enterprises, government agencies, service providers and academic institutions. With TippingPoint’s Intrusion Prevention System (IPS), organizations are protected against internal and external cyber attacks that may threaten critical infrastructures. TippingPoint’s Network Access Control (NAC) solution enforces device and user policies to ensure both endpoint compliance and granular post-access compliance. Interoperating with TippingPoint’s IPS, TippingPoint NAC ensures all malicious traffic is blocked from each endpoint and suspect/non-compliant traffic triggers other policy-controlled actions, including blocking, quarantining, alerting or rate-shaping. TippingPoint’s products are complemented by the Digital Vaccine® service, powered by TippingPoint’s DVLabs.


Infragistics has led the user interface components industry for over 1 years and has evolved into a multi-platform Enterprise Software products and services vendor with global reach at nearly every Fortune 2000 company. Infragistics empowers developers to build great application user interfaces and compelling user experiences on diverse platforms including Windows(r) Forms, ASP.NET, Tablet PC, JSF, Windows Presentation Foundation and Silverlight. Infragistics NetAdvantage(r) products feature customer-driven functionality and keep pace with the rapid advancement of technology to enable developers to craft applications based on Microsoft(r) best practices like the Composite Application Block (CAB), AJAX and modern interfaces consistent with the Office(r) 2007 and Windows Vista(r) look and feel. Infragistics also offers automated UI testing tools, code-level support, award-winning training, and consulting services that help ensure your organization`s ultimate success.


Data Dynamics, Ltd. provides award winning software tools and controls for application developers using Microsoft design environments. The company’s primary product focus is on data analysis and information reporting.


GDH Consulting provides technical staffing solutions for today’s changing workplace. At GDH Consulting we provide the highest level of IT and telecom professionals on a Contract, Contract-to-Hire and Permanent basis. While others claim to provide a certain skill, GDH Consulting places an emphasis on finding the best overall “fit” for both our clients and candidates.


SpringPoint is a full-service technology consulting firm. We are a fully-equipped firm built to offer a comprehensive set of technology driven solutions for your business. From custom software for internal use to multi-location system support for your entire organization, SpringPoint is the definition of full-service. It`s hard to imagine a better investment for your company than optimization of your business through technology. Well-designed, well-managed business processes and technology infrastructure can do more for your bottom line than you think. Call us today to see how we can help secure the technological foundation so your company can achieve new levels of greatness.


The Rowland Group is the industry leader in providing businesses with Hiring Solutions in the areas of Engineering, Information Technology, Accounting and Executive Management. The Rowland Group offers a variety of customized hiring solutions, including contract, contract-to-hire, direct and executive placement. Our clientele includes companies of all sizes and industries that care about hiring the `quotright person.`quot


TulsaConnect provides unmatched service and support to Tulsa and the surrounding communities. From Dial-Up connections to complex Web Hosting, they have the experience, the staff, and the know-how to do it right - the first time. Their facilities feature reliable power via APC UPS systems and controlled temperature and humidity via Liebert HVAC units. Internet connectivity is provided over redundant DS connections to Sprint, UUNET, and WilTel. Routing is provided by multiple Cisco 7200 class backbone routers that speak BGP for uninterrupted connectivity.


JoCo, Jobing Confidential LLC, is a local professional staffing company comprised of professional staffing specialists, familiar with the Tulsa business market, who work with clients to place outstanding, qualified employees. JoCo finds candidates in fields such as Engineering, Information Technology, Manufacturing, Finance `amp Accounting, Management, Marketing, `amp Sales. We provide professionals in all fields on a contract, contract-to-hire and direct hire basis. We work hard to find the best match for the professionals that we place and the clients we represent.


TEKSystems is the leading provider of IT services and the recognized leader in Information Technology and Communications staffing. TEKsystems offers a full line of comprehensive IT services, including technology deployment services and enterprise support services. We help businesses design, install, deploy and run their IT, communications and network systems by providing services and the best IT consultants available.


SourceGear offers cross-platform development tools for small and midsize teams. Vault, our popular version control system, is a compelling replacement for SourceSafe – bringing you painless branching, atomic commits, excellent remote performance, and full VSS imports. SourceGear Fortress combines the source-control power of Vault with integrated issue tracking and continuous integration support. Both tools offer Visual Studio and cross-platform Eclipse IDE integration, so your whole team gets the same first-class toolkit. Both Vault and Fortress are FREE for single users, and competitively priced for teams.


RelayHealth is an intelligent network with solutions that improve clinical communication, accelerate care delivery, and drive cash collection by connecting patients, providers, pharmacies, payors and financial institutions. At RelayHealth, we possess unique channel strength across all key segments of healthcare with established leadership in real-time transactions processing, a strong portfolio of transactional businesses, and the stability, trustworthiness, and resources of proven organizations. To support quality care improvements and reduced administrative costs across the healthcare industry, RelayHealth operates as a neutral partner in an open network environment, offering connectivity and interoperability among all organizations, systems and solutions. We are currently hiring for several technical job opportunities in Tulsa. Please visit our website for more information. https://www.relayhealth.com/rh/general/aboutUs/careers.aspx


CodeSmith is a software development tool to help you get your job done faster. Technically speaking it is a template driven source code generator that automates the creation of common application source code for any language (C, Java, VB, PHP, ASP.NET, SQL, etc.). CodeSmith includes many useful templates as well as entire sets of templates for generating proven architectures (.netTiers, CSLA, NHibernate, PLINQO, Wilson`s ORMapper, APOSA, and more). You can easily modify any templates or write your own to generate your code exactly the way you want it. CodeSmith can help you produce higher-quality, more consistent code in less time. Read More


ComponentOne® has continued leadership in the Microsoft Visual Studio component industry, and has been a premiere partner of Microsoft for over 20 years. ComponentOne`s flagship product, ComponentOne Studio® Enterprise™ is the industry`s broadest and most complete suite of development components designed for the .NET framework. Studio Enterprise delivers the tools developers need to produce next-generation UIs for Windows, Web, WPF, Silverlight, and Mobile applications with less code and in less time. ComponentOne is also the provider of Doc-To-Help®, DemoWorks™, and FrontLine™.


From the ‘50s music in the parking lot to the classic ’57 Chevy just inside the doors, America`s Incredible Pizza Company is an upbeat, Rockin’, Rollin’ Family Entertainment Center with enough energy to get you dancing and singing to the oldies! Incredible Pizza Company includes an all-you-can-eat high quality food buffet, themed dining areas, private party rooms and our “Fair-grounds” fun center loaded with games, rides and attractions for family members of all ages.


At JetBrains, we have a passion for making people more productive through smart software solutions that help them focus more on what they really want to accomplish, and less on mundane, repetitive `quotcomputer busy work`quot. We think you will find that our products reflect our dedication to this ideal.


Mindjet powers projects by revolutionizing the way people engage with information, ideas and each other. With Mindjet you are able to establish an effective foundation of knowledge that will stimulate successful project plans to get things done.


Nevron Software is the leading data visualization provider for the .NET platform. Since its formation, Nevron has established itself as the pathfinder company in component based data visualization, with a long record of innovation, backed with our long term and true commitment to deliver the ultimate in this technology field. Today Nevron is a synonym of premium quality in terms of product abilities, usability and customer support.


Telerik is the leading vendor of User Interface (UI) components for ASP.NET and Windows Forms, and .NET Reporting solutions. Building on our expertise in interface development and Microsoft technologies, Telerik helps customers build applications with unparalleled richness, responsiveness and interactivity. Check out the latest release featuring our RadControls for ASP.NET, ASP.NET AJAX controls, Silverlight tools, RadControls for WinForms, and Telerik Reporting: http://www.telerik.com.


If you`re looking for drawing software then Xtreme is a perfect solution for everything from simple logos to astonishingly detailed illustrations. If you`re working with photos then Xtreme will match your ambitions from simple one click auto-enhance of your photo through to awesome photo compositions.If you are looking for software for creating web graphics then Xtreme can help you produce all the graphics you`ll need for your site, from perfect buttons to eye catching Flash animations and even complete HTML pages. Whatever graphics you need and whatever your skill level, the famously friendly user interface and fast processing of Xara Xtreme will make it an absolute pleasure to be creative. And at a price that won`t break the bank!


Aspose, The .NET and Java component publisher! At Aspose you will find a wide variety of feature-rich components all of which can be purchased individually or in one powerful suite, Aspose.Total. Aside from programming components, you will also find our growing line of rendering extensions for Microsoft SQL Server Reporting Services to export RDL reports in Word, Excel, PowerPoint and PDF formats. With a variety of quality products, Aspose helps worldwide developers to become more productive and save their investments by delivering reliable solutions on time


`quotFor over a decade, Dundas Data Visualization, Inc. has been a leading firm in the development of advanced Data Visualization solutions for Microsoft Technologies. Our thoughts in the design and development of Dundas products are to help developers save time and money with elegant, well thought out, productivity enhancing components. This is reflected in our numerous awards and rapid adoption of Dundas Technologies by Fortune 500 companies across the globe.`quot


FarPoint Technologies, Inc. is the premier developer of Web Form, Windows Form and COM components for professional developers around the world. Our feature-rich components benefit the leading corporations and independent consultants as a cost-effective solution for building enterprise-wide applications.


Karamasoft provides the ultimate ASP.NET AJAX components for web UI developers. Since we started our business in May 2002, we have always stood out from the crowd of component vendors by providing ground-breaking tools and unmatched customer support. We build the best of breed ASP.NET UI components to lower the cost of development and to improve the potential of our customers all around the world. We are dedicated to build customer trust through our high-quality products and our prompt responses to customers and partners.


Mike Murach and Associates - For over 0 years, professional developers have been relying on Murach books for quick, practical training and reference. As one developer put it, “I started off as a mainframe programmer and I read other books, but none – and I really mean none – were as useful as Murach’s. Now I’ve crossed over into Visual Basic land with their book. As usual, it’s the best book out there.” From the beginning, our goal has always been the same: To develop the best book possible on any programming subject. That’s why our books are written by our own staff of experienced developers who know how to produce great training material. That’s why each book is packed with tested business examples. That’s why we format the content in “paired pages,” an approach that developers praise for both training and reference. And because we put that kind of time and care into each book, developers come back to us year after year, whenever they need career-related training.


Peachpit has been publishing top-notch books on the latest in graphic design, desktop publishing, multimedia, Web design and development, digital video, and general computing since 186. Over the past few years Peachpit has grown to encompass several digital product offerings, such as eBooks, online video products, and Safari Books Online as well as our first conference series – Voices That Matter: Web Design Conference. Our award-winning products feature step-by-step explanations, timesaving techniques, savvy insider tips, and expert advice for computer users of all sorts.


Isocentric Networks is your answer to enterprise- level web hosting and colocation related services. We know that businesses need solutions that drive growth and improve productivity. Isocentric Networks is an experienced, trusted provider of internet solutions. We can design, implement, and support your critical data and infrastructure allowing you to focus on your core business strengths.


INETA provides structured, peer-based organizational, educational, and promotional support to the growing worldwide community of Microsoft® .NET user groups. Our mission is to offer assistance and resources to community groups that promote and educate their membership in Microsoft`s .NET technologies. INETA welcomes all facets of the .NET user community, from developers and architects to project managers and IT professionals. Members can be user groups or special interest groups that focus on a single aspect of .NET, such as C, target the entire .NET platform or concentrate on other development technologies but are also interested in .NET. INETA is the next evolution in user group communities a non-profit, independent organization, chartered with supporting all user groups interested in the Microsoft .NET platform. INETA is run by a board of user group leaders, elected by their peers, and supported by Microsoft Corporation and other sponsors.


Engine Yard focuses on Ruby on Rails application deployments and operations support, so you can focus on developing your application and business. Customers have started during development and grown to millions of users without stress along the way. Start with one slice, grow to 16 slices, then to a dedicated cluster in our data center or yours--all without changing your code. Engine Yard supports the Ruby community, by sponsoring the development of Rubinius, Merb and other open source projects. We`re here 24/7, by phone, at (866) 518-YARD or email, at info@engineyard.com.