How to Pwn an Enterprise in 2018 (and 2019, and 2020...)

Presented at The Circle Of HOPE (2018), July 21, 2018, 8 p.m. (60 minutes).

This talk will "reveal the magician's" secrets on all of the "low-hanging fruit" hackers used to compromise enterprises in 2018. This will be a candid, detailed, step-by-step how-to attack chain walkthrough, explaining how and why the attacks work, and what steps can be taken to proactively defend against them. Participants will walk away with highly actionable tasks to immediately take to work on Monday to not only bump their security posture up a distinctive notch with little to no hit on their budgets, but also inherently render future penetration tests more cost-effective by eliminating potential "cheap shots" that pentesters love to take. They will also, of course, walk away with the ability to become the domain admin of an average corporation from their couch in record time.


Presenters:

  • Johnny Xmas
    **Johnny Xmas** (@j0hnnyXm4s) is a security researcher for the U.S.-based ICS cybersecurity and predictive analytics firm Uptake Technologies, and is most famous for his work on the 2015-16 TSA master key leaks presented at past HOPE conferences. He’s been speaking internationally on the topics of hacking, privacy, information security, and career advancement for nearly 20 years, both in and very far outside of the information security community - and attending HOPE since H2K! His infamous mixture of humor, raw sincerity, and honest love of people often leads to lighthearted but, at their cores, serious discussions revolving around our innate desires to get in our own way.

Links:

Similar Presentations: