A Logo

Feel free to include my content in your page via my
RSS feed

Help Irongeek.com pay for
bandwidth and research equipment:

Search Irongeek.com:

Affiliates:
Irongeek Button
Social-engineer-training Button

Help Irongeek.com pay for bandwidth and research equipment:

paypalpixle


Spy vs. Spy - Tip from the trenches for red and blue teams - Tom McBee & Jeff McCutchan Derbycon 2017 (Hacking Illustrated Series InfoSec Tutorial Videos)

Spy vs. Spy - Tip from the trenches for red and blue teams
Tom McBee & Jeff McCutchan
Derbycon 2017

This talk outlines some common, but effective, red team tactics as well as some of the defensive countermeasures for them. Boring, right? Wrong, because it doesn't stop there! Next we will escalate the complexity and sneakiness of the attacks for the purpose of dealing with the defensive countermeasures. We go back and forth like this, through a few iterations of each attack and its defenses. We conclude with an analysis of defensive trends, and a suggestion for shifting the way defense is commonly thought of. Attendees will leave this talk with an understanding of defensive techniques used to mitigate common attacks, offensive tricks to increase the success of the same attacks, and an idea for improving the way organizations commonly think about defense.

Tom - "Tom's background began in Systems Administration before moving over to Information Security in 2014. Since then he's focused on ways to help defend networks and systems from threats, while trying to increase his own offensive skillsets. He is currently working as a Senior Consultant at SecureState.", Jeff - "Jeff has been working in IT for about eight years with a focus on security for the past five. He enjoys performing offensive services as well as helping others learn and grow through training and mentoring. He is currently working as an Associate Principal Consultant at SecureState."

Tom - @t3phanis, Jeff - @jamcut

Back to Derbycon 2017 video list

Printable version of this article

15 most recent posts on Irongeek.com:


If you would like to republish one of the articles from this site on your webpage or print journal please contact IronGeek.

Copyright 2016, IronGeek
Louisville / Kentuckiana Information Security Enthusiast