Modern Evasion Techniques

Presented at DerbyCon 7.0 Legacy (2017), Sept. 23, 2017, 1 p.m. (50 minutes).

As pentesters, we are often in need of working around security controls. In this talk, we will reveal ways that we bypass in-line network defenses, spam filters (in line and cloud based), as well as current endpoint solutions. Some techniques are old, some are new, but all work in helping to get a foothold established. Defenders: might want to come to this one. Jason Lang (@curi0usJack) is a caffeine-imbued coding hermit, briefly emerging from the Wisconsin woods to congregate with other infosec & PowerShell lovers. Proficient in { }’s and trollery, Jason spends his days on the prowl for customer data and evenings in off-the-grid pursuits. #Nano4lyfe @curi0usJack

Presenters:

• Jason Lang

Links:

• https://www.derbycon.com/saturday-schedule/#event-95
• https://infocon.org/cons/DerbyCon/DerbyCon 7 2017/Modern Evasion Techniques Jason Lang AF.mp4