DNS as Cyber Tool & Red Team Tactics against a Windows network

Jun 14, 2018 · City of Bristol, United Kingdom

Agenda:
• 6:00 pm - Social
• 6:30 pm - OWASP update
• 6:35 pm - Presentation 1: Red Team tactics against a windows enterprise lock down network infrastructure - Sadi Zane, Raytheon
• 7:30pm - Presentation 2: DNS as a Cyber Security tool - Jonny Tyers
• After - Pub: The Famous Royal Navy Volunteer (http://navyvolunteer.co.uk/)

Presentation 1: Red Team tactics against a windows enterprise lock down network infrastructure

Abstract: This talk demonstrate demonstrate Red Team technique/tactics against a windows enterprise lock down network infrastructure, from an initial foothold with user level access to domain administrator without missing security patches. This a technical talk that will cover the followings:
- Red Team infrastructure design review
- Initial foothold using native windows built tools
- Privilege escalation from authenticated user to local administrator
- Credential harvesting from Local Security Authority Service
- Lateral movement from initial foothold to primary domain controller ( Native windows Tool)
- Stealth Persistence (Native windows tool)

Bio: Sadi, a Red Team Security Consultant working for Raytheon (ACS) Advanced Cyber Security Team, delivers advanced security red team projects.Qualified OSCP Offensive Security Certified Professional and check team member.

Presentation 2: DNS as a cyber security tool
- the data you can get out of DNS
- the protection you can provide using DNS (incl vulnerabilities in DNS today)
- the ease of deploying DNS-based protection in an organisation/cloud infrastructure
- secure DNS / the future of DNS

Bio: Sysadmin, developer and cyber security entrepreneur, Jonny has been hacking, coding and reading about computers since the days of 486es and dialup modems. Until recently working in secure government systems, he lives in Bristol and runs SHEPD (cyber-as-a-service for SMEs) and consults as a security architect.

Event organizers
  • OWASP Bristol (UK) Chapter

    The Open Web Application Security Project (OWASP) is a not-for-profit, worldwide organization focused on improving the security of application software. Our mission is to make application security visible, so that people and organizations can make informed decisions about true application security risks. Everyone is free to participate in OWASP and all of our materials are available under a free and open software license.  OWASP Bristol chapter typically meets on the 3rd Thursday every two months for great

    Recent Events
    More

Are you organizing DNS as Cyber Tool & Red Team Tactics against a Windows network?

Claim the event and start manage its content.

I am the organizer
Social
Rating

based on 0 reviews