Meet Us in Vegas for Black Hat, BSidesLV and DEF CON

Velociraptor is the most advanced, open source, endpoint visibility tool that everyone is talking about! Have you ever needed to respond to an incident in a large enterprise network? Have you wondered how many of your 10,000 endpoints are compromised? You know you should be hunting for common forensic artifacts but how do you do it in a scalable way, in a reasonable time? Well… now you can! This updated training course will teach you how to make the most of Velociraptor - taught by the developers of Velociraptor themselves!

Room: Potomac D (Session purchase required)
Sessions on August 5th (10am - 7pm) and August 6th - 8th (9am - 6pm)

Session Link

Ground Truth

As more of security becomes driven by data, a menagerie of job titles have cropped up across the industry. Data Scientist, ML Engineer, Data Engineer, AI Researcher, and more have become de rigeur job titles – but the lines between each role remain blurry, especially for early career and non-data folks.

In this talk, we talk about where the skills of these roles overlap, how to pursue a security data career, and crucially, offer some hot takes on why maybe we need some clearer lines.

Session Link

Attackers taking advantage of your environment and living off the land? Check. Vulnerabilities and zero days moving beyond the on-prem environment and into the cloud? Check. Isolated teams, non-aligned initiatives, and no shared mission? Check.

Yes, hybrid is where it's at — but it also gives you the makings of a perfect storm. In this session, we will put your mind at ease as they demystify the complexities of hybrid environments, sharing strategies for evolving cyber risk management across digitally complex ecosystems and forging a shared, cross-functional cyber defense.

Room: Mandalay Bay K

Session Link

Active Directory is the foundation of the infrastructure for many organizations. As of 2023, Metasploit has added a wide range of new capabilities and attack workflows to support Active Directory exploitation. This Arsenal demonstration will cover new ways to enumerate information from LDAP, attacking Active Directory Certificate Services (AD CS), leveraging Role Based Constrained Delegation, and using Kerberos authentication.

The Kerberos features added in Metasploit 6.3 will be a focal point. The audience will learn how to execute multiple attack techniques, including Pass-The-Ticket (PTT), forging Golden/Silver Tickets, and authenticating with AD CS certificates. Finally, users will see how these attack primitives can be combined within Metasploit to streamline attack workflows with integrated ticket management. The demonstration will also highlight inspection capabilities that are useful for decrypting traffic and tickets for debugging and research purposes.

Room: Business Hall - Arsenal Station 4

Session Link

Come by the Committee Boardroom for a demo labs presentation on Metasploit framework. 

Room: Committee Boardroom

Moderator: Austin Carson, Founder & President, SeedAI

Panelists: Erick Galinkin, Principal Artificial Intelligence Researcher, Rapid7 with Dr. Rumman Chowdhury, CEO, Humane Intelligence and former director of Twitter ML Ethics, Transparency, and Accountability; Kellee Wicker, Director of S&T, Wilson Center; and Tim Ryer, Legislative Assistant to U.S. Senate Majority Leader Chuck Schumer

This session will explore how we can combine the expertise of DEF CON attendees with the political will and specialized knowledge networks in the Administration and around DC to create wise policy for AI. Topics covered will include how the two communities can support each other and create a virtuous cycle of information conveyance and policy progress? What should the next steps of this work be - how do we move beyond the Biden EO? In this session we'll have top experts in policy and the hacker community come together to discuss what that can look like and how to be mutually conscientious of what our experiences and priorities may be.

Location: Policy Village