Content starts at 6:30PM, with doors opening at 6PM to socialize. Content will be in the form of 2 lightening talks, with breaks to meet and chat in-between.
April W. "Using Social Engineering Principles At Work"
Social Engineering is commonly discussed as a security threat (or in terms of testing). However, the principles of SE can certainly be used in other ways. By employing SE non-offensively and building legitimate, genuine rapport with your peers, employees, and , you can achieve goals, engineer opportunities, and be more successful in your endeavors. Understanding what people are motivated by allows you to craft effective workplace interactions when facing other humans, job-security secrets, silos, and red tape.
Dani W. "Using Sysmon, C#, Python, & ELK to Hunt for Badness"
Sysmon version 5.0+ includes some excellent updates in the visibility provided in process execution. In this segment, Danielle Wood, a security professional of over 10 years will discuss using Sysmon, and ELK to hunt for evil in your environment. Included in the talk will be a discussion of hunting queries through advanced ELK queries, and sample code to get you off the ground in your collecting and hunting efforts. Including merging in threat intel sources such as VirusTotal & NSRL and customizing asset information for your own purposes.