Hashes to Ashes: Life & Times of Clandestine Infrastructure

Presented at NolaCon 2019, May 17, 2019, 11 a.m. (Unknown duration).

<p>Exploits and implants get all the press, but infrastructure is the bedrock for APT actor operations. It’s the first thing created, the last thing destroyed, and the costliest to have caught, exposed, or otherwise burned. Akin to logistics in traditional military operations, infrastructure is critical: as Admiral H.G. Rickover (USN) said: “Bitter experience in war has taught the maxim that the art of war is the art of the logistically feasible.” Clandestine operations infrastructure possesses an extreme complexity, and this talk aims to describe and explore that complexity in detail.</p> <p>By examining the complexity of APT actor operations from the perspective of their infrastructure, including highlighting the complexity involved alongside a real-world example, this talk will help network defenders improve their understanding of the threat landscape and perhaps give ideas for red teamers as well.</p>

Presenters:

  • Jason Kichen
    Jason is the VP of Advanced Security Services at eSentire. Prior, Jason spent nearly 15 years in the Intelligence Community executing some of the most complex technical and cyber operations against the hardest adversaries all over the world. He’s the recipient of the Director of National Intelligence’s Meritorious Unit Citation, the National Intelligence Professional Award from the National Counter Proliferation Center, and other awards and commendations. He left the government in 2017 and is working to deprogram as quickly as possible. He’s helped in this endeavor by copious amounts of coffee and whiskey.

Links:

Similar Presentations: