Red Team Apocalypse

Presented at RVAsec 2018, June 7, 2018, 4 p.m. (50 minutes)

TABLETOP SCENARIO: Your organization regularly patches, uses application whitelisting, has NextGen-NG™ firewalls/IDS’s, and has the latest Cyber-APT-Trapping-Blinky-Box™. You were just made aware that your entire customer database was found being sold on the dark web. Go.

Presenters:

• Beau Bullock - Black Hills InfoSec
  Beau is a Senior Security Analyst at Black Hills Information Security where he performs penetration tests and red team assessments. He is the author of various red team/pentest tools such as MailSniper, PowerMeta, HostRecon, and DomainPasswordSpray. Beau is a host of the web shows Tradecraft Security Weekly & Hack Naked TV, and is a frequent speaker at industry events including Black Hat, DerbyCon, Wild West Hackin’ Fest, SANS, and various BSides events.
• Derek Banks - Black Hills Information Security
  Derek is a Senior Security Analyst at Black Hills Information Security and has over 20 years of experience in the IT industry as a systems administrator for multiple operating system platforms, and monitoring and defending those systems from potential intruders. He has worked in the aerospace, defense, banking, manufacturing, and software development industries. Derek has experience with creating custom host and network based monitoring solutions.

Links:

• https://rvasec2018.sched.com/event/EgDc/red-team-apocalypse
• https://infocon.org/cons/RVAsec/RVAsec 2018/Derek Banks & Beau Bullock - Red Team Apocalypse.mp4
• https://infocon.org/cons/RVAsec/RVAsec 2018/Derek Banks & Beau Bullock - Red Team Apocalypse.eng.srt (subtitles)