Pigs Don’t Fly – Why owning a typical network is so easy, and how to build a secure one.

Presented at DerbyCon 3.0 All in the Family (2013), Sept. 27, 2013, noon (50 minutes)

As shown by headlines and countless intrusions, even moderately skilled attackers can sail through the defenses of a typical corporate network. Using a playbook of techniques both common and uncommon, intruders can bypass almost all security barriers despite even tough policies on end users and admins. But failure is not inevitable for a defender. There are many practical ways a network can be constructed that will wipe out most of the playbook, and they don’t require expensive purchases.

Security must be built from the start, and this presentation will show you how it’s done; how to intelligently look at threats and plan defenses for a Windows network.


Presenters:

  • Matt Weeks / scriptjunkie as Matt “scriptjunkie” Weeks
    Matt Weeks has performed research in mathematics and information security. In his day job, he secures one of the largest networks in the world, and researches both offensive and defensive techniques. Also known as scriptjunkie, he has developed for the Metasploit framework, wrote the sessionthief MITM tool, has spoken at conferences such as DEFCON and Black Hat, and broke a cryptosystem based on chaos theory. He runs the site http://www.scriptjunkie.us/