If you have any special accessibility needs, please let us know at [email protected] before the Hackin’ Cast you plan to attend. We will do our best to accommodate your needs.
|December 2021 Roundup by Wild West Hackin' Fest: Purple Team w/ Dan DeCloss | 5-Hours
The Roundup herds together some of the sharpest minds in the industry to talk about a particular topic on the frontier of infosec. There’s no need to break (or rob) the bank, because The Roundup is entirely free to attend!|
The December 2021 Roundup: Purple Team
Join Dan DeCloss from PlexTrac for this Purple Team Roundup event!
We are using the WILD WEST HACKIN' FEST: HACKIN' CAST & TRAINING Discord for live discussion and QA during The Roundup: https://discord.gg/wwhf
|12/2/2021||12:00 EST||5 hours||Register|
|A Master Class on Offensive MSBuild | Chris Truncer & Joe Leon | 1 Hour
As red team operators, we all have favorite tools and tactics. For FortyNorth Security's offensive security team, our favorite initial access, persistence, lateral movement and post-exploitation technique leveraging application whitelisting bypasses. While there are hundreds of applications that can bypass application whitelisting, our most reliable and frequently used tool is MSBuild. Our red team rarely conducts an assessment without using MSBuild for some element of the attack lifecyle. The goal of this talk is to create an authoritative and exhaustive reference for security engineers to understand the full capabilities of using MSBuild on offensive engagements. We'll cover using MSBuild within initial access payloads, persistence, lateral movement and post-exploitation jobs. We'll also demonstrate multiple ways of executing arbitrary code stored both locally and remotely with MSBuild. For every offensive technique we demonstrate, we'll also highlight defensive measures to detect or prevent these actions. Coinciding with this talk, FortyNorth Security will release a GitHub repository containing a comprehensive review of all known techniques for using MSbuild on offensive engagements.|
Join the WWHF Discord Community to participate in discussion with the presenter and attendees: https://discord.gg/wwhf
|1/26/2022||13:00 EST||1 hour||Register|