DC207 is a DEF CON group focused on community, education, mentoring and bringing the hacker and InfoSec community in Maine together. Our gatherings feature presentations, workshops, CTFs, and anything else in which the community is interested. The group is community-driven, and allows its members to be active so they can learn or teach about a subject they are passionate about. DC207 also supports the already-existing security-related and technology-focused groups, and we encourage members of all groups to collaborate and share knowledge. We are strong together!

The mission of the DC207 group is to advance knowledge and educate anyone interested in science, technology, and other areas of information security through project collaborations, group gatherings, and group activities that will best serve our community and the world.
About image
  •  2/21/2024 06:00 PM
  •   149 Maine St, Brunswick, ME 04011, USA

🔒 DC207 Presents: Hackers for a Cause! Join us for an electrifying night of nostalgia and community spirit at the local theater as DC207, your go-to DEFCON group, brings you the cult classic film "Hackers" (1995) starring Angelina Jolie. The price for admission you ask? It's a non-perishable food item.

  •  1/18/2024 06:00 PM
  •   519 Congress Street, Portland, ME, USA

Join us for an intimate lecture with the world-famous adversary for hire Jayson E. Street!

  •  12/13/2023 06:00 PM
  •   1250 Turner St, Auburn, ME 04210, USA

Join us for an exhilarating hands-on workshop on Wi-Fi hacking at Central Maine Community College!

  •  10/25/2023 06:00 PM
  •   382 U.S. Route 1, Scarborough, ME 04074, USA

Bowling 4 Hackers: Strike Down Barriers, Pin Up Support!

  •  8/24/2023 06:30 PM
  •   72 Commercial St, Portland, ME, USA

Join us on August 24th, 2023 as we set sail on Casco Bay off Portland, Maine for an unforgettable experience. This event is specially designed for technology professionals looking to connect, share ideas, and create meaningful relationships. 🌟 Highlights of the event: Mingle with fellow tech professionals in a relaxed setting Enjoy breathtaking views and a beautiful sunset over Casco Bay Forge new connections and strengthen your professional network 🥗🍻 This is a BYOB and potluck event! Please bring your favorite beverage and a dish to share with fellow attendees. Let's create a feast as we connect and converse! 🚨 Please note that space is limited for this event to ensure an intimate and engaging atmosphere. Be sure to sign up early to secure your spot! To ensure that folks can connect, please only reserve tickets for those who are interested or are working in the infosec industry. We want to create a focused environment for meaningful professional discussions and networking.

  •  6/15/2023 06:00 PM

TBD - Portland area

  •  5/17/2023 06:00 PM
  •   1250 Turner St, Auburn, ME 04210, USA

Join us for our Bad-USB Workshop where you'll learn how to build devious USB devices that can wreak havoc on unsuspecting victims. Our goons will teach you the ins and outs of creating malicious USBs and provide valuable mitigation techniques to help protect against these attacks. Plus, you'll have the opportunity to participate in an open lab and put your newfound skills to the test. Don't miss out on this exciting and informative event!

  • $25
  •  5/4/2023 06:00 PM
  •   88 Spring St, Portland, ME 04101, USA

DC207 will MTUG's annual user conference on May 4th in their 'Birds of a Feather' room. The conference is awesome this year, register now at https://www.eventbrite.com/e/2023-annual-mtug-information-technology-summit-tradeshow-registration-500891087727 and stop by and say hi!

  •  4/20/2023 06:30 PM
  •   525 Main St, Damariscotta, ME, USA

Testing out detection capabilities before putting them into operation is important, even if you don’t have a big production environment to protect (yet). That’s where Atomic Red Team comes in! Together, we’ll talk about an open source library of prebuilt tests to evaluate your environment’s visibility and how you can make your own environment to test them in. Then, we’ll walk through what events are created after running a test and what we can learn from them. This is truly the core fiber of Atomic!

  •  3/23/2023 06:00 PM
  • Online Event

Join us for an exciting Capture the Flag (CTF) event hosted by DC207 on March 23rd! This virtual event will be held on the mainesec.org Discord server and is open to anyone who is interested in testing their cybersecurity skills. Whether you're a beginner or an experienced hacker, this CTF is designed to challenge your knowledge and problem-solving abilities. Compete against other players and see who can solve the most challenges in the shortest amount of time. The CTF will feature a variety of challenges in different categories, including cryptography, web security, reverse engineering, and more. Each challenge will have a certain number of points assigned to it, and the player or team with the most points at the end of the event will be declared the winner. So, mark your calendar and get ready to show off your skills at the DC207 CTF event on March 23rd. Join the mainesec.org Discord server to participate and have fun!

  •  2/16/2023 06:00 PM
  •   504 Congress St, Portland, ME 04101, USA

Are you ready to take a trip back in time? Well, strap on your fanny pack and dust off your Gameboy (or Gamegear + 37 batteries) because DC207 is inviting you the ultimate retro-gaming happy hour experience at Arcadia! On February 16th at 6 PM, we're inviting all information security professionals, technology practitioners, geeks, and students alike to join us for a night of nostalgia, networking and fun. Arcadia has all of the classics and of course, a wide selection of pinball machines to test your pinball wizard skills. So come ready to eat, drink, play and mingle with like-minded individuals. Remember, "It's dangerous to go alone! Take this." (and your business card). Don't miss out on this opportunity to have a great time and make valuable connections. We promise it will be a night you won't forget. See you there!

  •  1/24/2023 06:00 PM
  •   1250 Turner St, Auburn, ME 04210, USA

DC207 is hosting a very special soldering workshop in January to kick-start the new year. Join us to learn how to assemble and repair electronic components - no experience required! We'll have kits and build a light-up fidget spinner, plenty of helpers, and an instructor showing you the ins and outs of building your first electronics project. We'll have a flipper zero giveaway, new DC207 stickers, pizza, and good times held by all. You MUST sign up for this event - space is limited!

  •  11/17/2022 06:00 PM
  •   43 Campus Avenue, Gorham, ME, USA

The internet is a scary place. There are bad folks everywhere, just waiting to steal your data or invade your privacy. A VPN seems like the perfect solution to this problem – after all, it encrypts your traffic and routes it through a secure tunnel, keeping you safe from prying eyes... right? But unfortunately, VPNs are not the cure-all that the doctor ordered. Jim Troutman joins us for a very special talk "VPNs are internet snake oil". This Shmoocon 2022 talk got media attention and it's coming to DC207. So, join us, you won't want to miss this provocative and informative presentation.

  •  10/20/2022 06:00 PM
  •   201 Southborough Dr, Scarborough, ME 04074, USA

Feeling a bit roguish? Wish you knew how to pick locks, break out of handcuffs, and crack open safes? Well, DC207's event on October 20th is something you won't want to miss. We'll be learning the ins and outs of lockpicking from community experts over cold beers. Come to Sebego's brewpub in Scarboro for a cold brew and pop locks with your local hackers. We'll have a safe cutaway, handcuffs, and a whole lot of locks for you to try your skills on. Lockpicks will be available to borrow (or available to take home with a donation) - so bring yourself and learn how to pick locks.

  •  8/18/2022 06:00 PM
  •   148 Anderson St, Portland, ME 04101, USA

Hey hackers! DC207, Maine's DEFCON group is gathering in April at rising tide brewing company in Portland. Join us to reflect on what's happening in the community, network, complain about latest vulnerability, or trade notes on the latest TryHackMe room you're working on. See ya there!

  •  6/16/2022 06:00 PM
  • Location: To Be Announced

DC207 invites you to "Introduction to Amateur Radio" by the Wireless Society of Southern Maine, presented by Tim Watson KB1HNZ. Learn about the world of HAM radio and the world of RF! Tim is one of the founders of our club, which was established in 2010, and is currently our Treasurer.

  •  5/19/2022 06:00 PM
  •   971 Congress Street, Portland, ME 04103, USA

DC207 invites you to an open hacker lab! DC207 celebrates the hacker culture of learning, taking things apart, and broadening your horizons. What better way to celebrate than to have an open lab in one of the most extraordinary maker spaces in Southern Maine?

  •  4/21/2022 06:00 PM
  •   103 Fox Court, Portland, ME 04101, USA

Hey hackers! DC207, Maine's DEFCON group is gathering in April at rising tide brewing company in Portland. Join us to reflect on what's happening in the community, network, complain about latest vulnerability, or trade notes on the latest TryHackMe room you're working on. See ya there!

  •  3/17/2022 06:00 PM
  •   971 Congress St, Portland, ME 04103, USA

Dungeons and Dragons, magic, texas hold em, pokemon... you're likely familiar with one or more of those, but have you heard of Backdoors and Breaches? Join us in March 2022 to learn about the new card game from BHIS, Backdoors and Breaches. A game, a learning experience, a table top exercise, all in one fun card deck. We'll cover a brief history of the game, rules and everything you need to know to get started.

  •  2/17/2022 06:00 PM
  •   971 Congress Street, Portland, ME 04103, USA

DC207 invites you to an open hacker lab! DC207 celebrates the hacker culture of learning, taking things apart, and broadening your horizons. What better way to celebrate than to have an open lab in one of the most extraordinary maker spaces in Southern Maine?

  •  12/16/2021 06:00 PM
  •   103 Fox Court, Portland, ME 04101, USA

Hey hackers! DC207, Maine's DEFCONgroup is gathering this week at rising tide brewing company in Portland. Join us to reflect on the year, network, complain about log4j, trade notes on KringleCon and kick back with the local infosec community. See ya there!

  •  11/18/2021 06:00 PM
  •   971 Congress Street, Portland, ME 04103, USA

DC207 invites you to their first-ever open hacker lab! DC207 celebrates the hacker culture of learning, taking things apart, and broadening your horizons. What better way to celebrate than to have an open lab in one of the most extraordinary maker spaces in Southern Maine?

  •  10/21/2021 06:00 PM
  •   971 Congress St, Portland, ME 04103, USA

A honeypot is an intentionally created fake system that is designed as a trap for the potential attackers. They deviate the attack to the fake system rather than the original system and even it helps you detect the malicious traffic and track them. In this workshop we'll be building our own honeypots with microcontrollers. Bring your laptop with you, this will be a hands-on exercise where you'll learn how to create simple honeypots using microcontrollers. All hardware will be provided and you'll be bringing home your own honeypot by the end of the workshop.

  •  9/16/2021 06:00 PM
  •   971 Congress St, Portland, ME 04103, USA

GitHub Actions are a popular thing with the DevOps crowd, but what sort of supply chain risks do they bring to an organization? Can the GitHub Action Marketplace be trusted? Scott Ellis joins us to provide an overview of GitHub Actions for those not familiar and proceed to demonstrate a few vulnerabilities that have already been used in real-world attacks.

  •  8/19/2021 06:00 PM
  •   971 Congress St, Portland, ME 04102, USA

CVES - how do they work? Well, get ready to find out! Join us on August 19th at the open bench project in Portland Maine for an exciting presentation on how to find bugs and successfully publish CVEs.

  •  7/15/2021 06:00 PM
  •   4 Canal Plaza, Portland, ME 04101, USA

Join us in socializing - in person! After a long time of just meeting online, let's get together and catch up. No formal talk, or subjects, just beers and peers. :-)

  •  5/20/2021 06:00 PM
  • Online Event

Hardware hacking is for everyone! Fundamentals and benefits of learning hardware hacking. How to set up a lab on a tight budget, and a POC on hacking around the house.

  •  4/15/2021 04:25 PM
  • Online Event

Join us for an informative session on AWS Vulnerability scanning and management. We'll be joined by Josh Moss who will walk us through how to look for and find problems in your cloud and devops driven infrastructure with free open source tooling. You won't want to miss it! Sign up today

  •  3/18/2021 04:21 PM - 3/25/2021 10:59 AM
  • Online Event

Join DC207 for the kickoff to a special event we're hosting with the help of Secure Code Warrior! We’ve partnered with Secure Code Warrior to bring you a defensive security-based tournament from a developer's perspective. The tournament allows you to test your skill against the other participants in a series of vulnerable code challenges that ask you to identify a problem, locate insecure code, and fix a vulnerability. Join us on the day for our kickoff event, and then finish the challenge over the week.

  •  2/18/2021 10:22 AM
  • Online Event

Maine's community of security experts get together for some awesome knowledge sharing. Join us for presentations on malware analysis, pivoting, and the nmap scripting engine. See you there, and don't forget to register over at http://events.dc207.org

  •  12/17/2020 06:00 PM

Chris Elgee joins us for a holiday themed DC207! We'll be talking all about the SANS holiday hack challenge, something Chris has been involved with for years. Join us for an overview of this awesome holiday event and learn more about what goes into the creation of such an event.

  •  11/19/2020 06:00 PM
  • Online Event

In this exciting deep dive on application security we'll be exploring real world examples of advanced hacking techniques like attack chaining, command injection, remote code execution and broken access control. Burninator will presenting her take on the world of application security and red teaming. Don't miss, it's going to be great!

  •  10/15/2020 06:00 PM

Come hither and play a fun game in cyberspace with your fellow New England hackers! We're hosting our first Jeopardy-style trivia game, with buzzers and everything. Points and prizes are awarded at the host's discretion - so come prepared with a frosty beverage, an open google browser, and have some fun with us!

  •  10/11/2020 12:00 AM
  •   971 Congress St, Portland, ME 04103, USA

Amateur Radio is a hobby enjoyed by hundreds of thousands of people worldwide. Learn about radios, antennas, atmospheric transmission. During this introduction, we’ll demonstrate some state-of-the-art radio equipment and explain how you can get involved with this awesome hobby.

  •  9/10/2020 06:00 PM
  • Online Event

Web crawlers or spiders have been a mainstay in the testing toolkit of security folks for many years. They’re great for mapping out websites and understanding what you’ll be testing. There’s one disadvantage to spiders though, they only show you what you have access to… what if some of those resources are user specific, or are behind resources you can’t see or reach? In this talk, Ryan Boutot will be introducing a new open source tool for security researchers called XSSpider. XSSpider is a unique spidering tool which is meant to run within an XSS payload and execute spidering from the user’s browser, saving everything it finds for later review. You will simply not want to miss the debut of this new awesome tool.

  •  8/13/2020 06:00 PM
  • Online Event

DEFCON 28 is a wrap! Did you have fun? What did you like about DEFCON 28? We'll be tapping a few folks to give recaps of the highlights of DEFCON 28 and talk through the things learned. Come for a casual meetup to talk about all the things you saw and didn't see! :-)

  •  7/9/2020 06:00 PM
  • Online Event

Featuring four lightening talks from local community members. We'll focus primarily on speakers who have not presented before, or people who are new to the industry. Topics will include security certifications, Azure, Elastic, and resources for the newly developing professional. You won't want to miss it!

  •  6/11/2020 05:09 AM
  • Online Event

Join us for this special event where we'll be joined by the super awesome Mubix, aka Rob Fuller. Rob has over 14 years of experience covering all facets of information security. He has been behind the lines helping to design, build, and defend the US Marine Corps, US Senate, and Pentagon networks - as well as performing penetration tests and Red Team assessments against those same networks. More recently, Rob has performed numerous successful Red Team assessments against commercial Fortune 50 companies representing some of the best defensive teams in the industry. More event details to follow.

  •  5/14/2020 06:00 PM
  • Online Event

A lot is expected of software developers these days; they are expected to be experts in everything despite very little training. Throw in the IT security team (often with little-to-no knowledge of how to build software) telling developers what to do and how to do it, and the situation becomes strained. This strained relationship can be overcome! Join us and Tanya for a masterclass in AppSec.

  •  4/16/2020 06:00 PM
  •   Virtual Event

DC207 is hosting another awesome capture the flag event! Come to hone your skills and learn how to hack in this fun and inviting setting.

  •  3/12/2020 06:15 PM
  •   Cyberspace!

Jim Troutman's ShmooCon 2020 winning talk is going to explore the unloved protocol, DNS. It's the glue that keeps the internet together, and can be used in surprising and unexpected ways. Join us for this awesome talk!

  •  2/20/2020 08:00 PM
  •   27 Pearl Street, Portland, ME, USA

In this hands-on workshop we’ll be building passive Ethernet tap devices. With these we’ll be able to sniff network traffic and analyze the data between endpoints.

DC207 Code of Conduct: Commitment to Diversity and Zero Tolerance for Harassment image
DC207 is dedicated to fostering an environment where everyone, irrespective of their background, feels welcomed, respected, and empowered to contribute. Diversity and inclusivity are not just words; they define our actions and ethos. This Code of Conduct elucidates our commitment to promoting diversity and ensuring an inclusive, respectful, and harassment-free community.

1. Respect for All Individuals:
Every participant deserves respect. Discrimination, harassment, or belittling of any individual based on their race, gender, religion, age, sexual orientation, disability, physical appearance, or other attributes is strictly prohibited.

2. Active Promotion of Diversity:
a. Recruitment: Efforts will be dedicated to reach out to underrepresented groups and ensure inclusivity in our recruitment materials and channels.
b. Events: DC207 will aim to showcase diverse speakers, panelists, and contributors. Event organizers will consider diversity in topic selection, speakers, and venue choice - all of which must align with our code of conduct.

3. Encourage Different Perspectives:
We value diverse experiences and perspectives. Share your unique point of view with respect and constructiveness within the guidelines of the code of conduct.

4. Harassment Policy:
DC207 champions a harassment-free zone. Harassment includes:
  • Unwanted comments related to personal attributes such as gender, age, sexual orientation, appearance, race, or religion.
  • Unwanted sexual attention.
  • Intimidation, stalking, or following.
  • Unauthorized photography or recording.
  • Disrupting events.
  • Inappropriate physical contact.
  • Promoting any of the aforementioned behaviors.
All community members must understand and adhere to this policy.

5. Reporting Mechanism:
Should someone violate the Code of Conduct or if you ever feel unsafe, report immediately to DC207 organizers. All reports are confidential and will be promptly addressed.

6. Inclusive Language:
Use language that is inclusive and devoid of phrases or terms that might offend or degrade.

7. Accessibility:
Our events and resources will be made accessible to everyone, accommodating those with disabilities when necessary.

8. Continuous Learning:
DC207 commits to continuous training on subjects of all matters, and we recognize that people are attending events with varying levels of skill and education. We aim for openness, accessibility, and creating a welcoming environment which helps build up and empower others with knowledge and skills.

9. Proactive Allyship and Action-Oriented Stance:
At DC207, we stand firmly for protective, action-oriented allyship. This isn't a passive commitment; it's a call to action. Every member, participant, and ally is not only expected to respect and value diversity but also to actively play a part in shaping a more inclusive and equitable world.
What this means for our community:
  • Be Proactive: We urge everyone to come to the table, eager to learn and make tangible differences in the world around them.
  • Call Out Inequality: We believe in the power of collective voices. When you notice inequality, call it out. Bring it to light, and allow for open discussions to foster understanding and change.
  • Identify and Challenge Hate: Any form of hate, whether overt or subtle, has no place in our community. We rely on our members to recognize, challenge, and combat such sentiments and actions.
  • Elevate Minority Voices: One of the most potent ways to fight inequality is to amplify the voices of those often marginalized. Whether it's through events, discussions, or daily interactions, always look for ways to highlight and bring awareness to the experiences and insights of minority groups.
Through these actions, we aim to not only talk about change but to drive it. DC207 is more than a community; it's a movement toward a more just, inclusive, and understanding world.

10. Restrictions on Misrepresentation and False Affiliation:
Members, participants, and speakers have certain rights and privileges granted by DC207. However, they are strictly prohibited from:
  • Using DC207 logos or branding at other events without explicit permission.
  • Claiming or suggesting an affiliation with DC207 without explicit authorization.
  • Misrepresenting DC207 or implying false endorsements or connections.
  • These rights and privileges, while granted, may be revoked at any point especially if members are found violating our Code of Conduct.
11. Consequences of Violation:
Breaching this code will have consequences, determined by the lead DC207 organizer in consultation with any impacted parties. Consequences can range from:
  • Restricted participation in events.
  • Temporary or permanent bans in speaking or attending DC207.
  • Direct counseling.
  • Other remedial actions deemed fitting by the lead DC207 organizer.
12. Feedback Loop:
We're open to feedback on how to better serve our community and improve our inclusive efforts. Open a dialog with us and let's learn how we can make this code of conduct the best we can make it.

12. Annual Review:
The Code of Conduct will be evaluated annually, incorporating community feedback to ensure its efficacy.

DC207 believes in a diverse and inclusive community where everyone feels valued. Our actions and initiatives reflect our commitment to this cause. Let's champion a difference, together.