Tools, techniques, and war stories from the security researchers at Bishop Fox.
Do you monitor a stream of hourly changes to your external-facing networks and applications? Are you trying to guess your user’s latest passwords before someone else does? Would you like to know in real-time if someone at your organization re-used their password or typed it into a phishing domain?
In this talk, we’ll share a few of our favorite stories from the front lines as well as our choice techniques for continuous reconnaissance and getting a foothold on a system. Demonstrations include a framework for continuous attack surface monitoring, automatic horizontal password guessing, and a technique for defeating phishing before it happens.
These are some of the proactive techniques we need in an age where attackers have no shortage of missing patches, weak passwords, and simple misconfigurations to exploit. Attendees will gain insight into how to be a better security professional and how to ensure they’re enabled to stay a step ahead of the latest emerging threats.