Presented at
DerbyCon 9.0 Finish Line (2019),
Sept. 7, 2019, 3 p.m.
(45 minutes).
This talk will serve as a persistent, canonical reference for all things BloodHound. From “head to tail”, we will use war stories and several live demos to explain every current aspect of and feature in the tool, the attack primitives tracked by the graph database, and how users can go beyond the tool and use cypher to perform even more advanced attack-path analysis during their penetration tests and red team engagements. Attendees will walk away with new skills for attacking Active Directory even more effectively, and going forward, we will reference the video of the talk whenever someone needs to see a demonstration for a feature of BloodHound, an attack primitive, or how to perform more advanced analysis outside the interface.
Presenters:
-
Rohan Vazarkar / @cptjesus
as Rohan Vazarkar
Andy Robbins and Rohan Vazarkar are two creators of BloodHound, along with Will Schroeder. Andy and Rohan both come from a penetration testing and red teaming background, but focus more on defense these days while continuing to support red team operations. Both formerly from Veris Group's Adaptive Threat Division, both now working at SpecterOps as Adversary Resilience consultants.
-
Andy Robbins / @_wald0
as Andy Robbins
Andy Robbins and Rohan Vazarkar are two creators of BloodHound, along with Will Schroeder. Andy and Rohan both come from a penetration testing and red teaming background, but focus more on defense these days while continuing to support red team operations. Both formerly from Veris Group's Adaptive Threat Division, both now working at SpecterOps as Adversary Resilience consultants.
Links:
Similar Presentations: