Vulnerability Intelligence

Presented at Black Hat Europe 2021, Nov. 11, 2021, 10:20 a.m. (40 minutes).

Attend a talk to learn tips to navigate the jungle of the vulnerabilities scene. Most likely the oldest task of a security specialist and still high on the agenda of any security organisation is prioritizing and mitigating weaknesses.

What are the different standards and significant improvements to help? Let’s dig into 10 years of a vulnerability database maintained by the vfeed.io team and analyze the results.


Presenters:

  • Rachid Harrando - Office of the CISO , ServiceNow
    Rachid Harrando fell in love with CyberSecurity, thanks to his long-time buddy Nabil Ouch (aka @ToolsWatch) where they launched their 1st startup about Cloud Vulnerability Security! Now Rachid enjoys keeping up with InfoSec as Office of the CISO at ServiceNow. Rachid is CISSP, ISO17001 LI Certified and graduated from French Engineering School ESME Sudria Paris!
  • Nabil (NJ) Ouchn - ICS/SCADA Ethical Hacker, ToolsWatch
    Nabil (NJ) Ouchn has 20 years of experience in security assessment, penetration testing and vulnerability management with excellent knowledge of industry standards. In 2001, he founded the Leading and renowned Infosec Community Tools Portal ToolsWatch.org. During 2011, NJ co-founded and since then manages the Black Hat Arsenal Event improving its development and expansion from USA to Europe and Asia. Today the Arsenal is the World Largest Security Event dedicated to Open Source Tools Demonstrations. NJ is also maintaining vFeed IO the Largest Correlated Vulnerability and Threat Intelligence Database used by 1000+ security companies and CERTs.<br><br>He currently works as ICS/SCADA Ethical Hacker for different Oil Companies in Europe and the Middle East.

Links: