2019 Presentation Roster
TTP Safari: Taking a Look at Adversarial Tactics, Techniques, and Procedures Being Used in the Wild presented by Brandon Poole.
In order to be successful defenders we must know what our adversaries are doing hence the adage "offense must inform defense". During this talk we will discuss some of the TTP adversaries are using today in the wild to get into our networks as well as controls that can be implemented to detect or prevent the TTPs. Talk will end on discussion on MITIRE ATT&CK framework and how to test for gaps in your current security controls.
Brandon is a Detection Engineer at Red Canary, who spends most of his time analyzing, researching, and developing methods to detect evil on endpoints. Brandon's experience prior to Red Canary includes being an independent consultant for a large MSSP helping customers build SOCs, investigating and performing incident response for APT actors, and system/network administrator. Brandon is also a Mentor instructor for SANS.
OSINT: Breach Data, Ethics, and OpSec... Oh My! presented by Josh Huff.
What does breach data look like? Is breach data ethical? How can they be used? What does breach data teach us about privacy and security awareness? What can we do to protect our own data against a breach? Using real-world examples, we’ll discuss these questions and provide resources you can use to leverage breach data in your own investigation.