• Friday, September 6

  • Opening Ceremony

     
    Fri, 08:30 - 09:00
    Track 1

  • Opening Keynote - Presented by Ed Skoudis

    Ed Skoudis
    Fri, 09:00 - 09:45
    Track 1

  • DerbyCon Story Time Panel

    Dustin Heywood and others
    Fri, 10:00 - 10:45
    Track 1

  • Dynamic Risk Taking and Social Engineering

    Chris Hadnagy
    Fri, 12:00 - 12:45
    Track 1

  • Using Next Generation Fuzzing Tools: Fixing Bugs and Writing Memory Corruption Exploits

    Jared DeMott, John Stigerwalt
    Fri, 13:00 - 13:45
    Track 1

  • “How do I detect technique X in Windows?” Applied Methodology to Definitively Answer this Question

    Matthew Graeber
    Fri, 14:00 - 14:45
    Track 1

  • To CORS! The cause of, and solution to, your SPA problems!

    Kevin Cody, Tim Tomes
    Fri, 15:00 - 15:45
    Track 1

  • Not A Security Boundary: Breaking Forest Trusts

    Lee Christensen, Will Schroeder
    Fri, 16:00 - 16:45
    Track 1

  • Enabling The Future (Panel)

    Scott Angelo, Kevin Baker, David Kennedy, Jess Walpole
    Fri, 17:00 - 17:45
    Track 1
  • Saturday, September 7

  • 42: The answer to life, the universe, and everything offensive security

    Nick Landers, Will Pearce
    Sat, 09:00 - 09:45
    Track 1

  • kubered - Recipes for C2 Operations on Kubernetes

    Jeff Holden, Larry Suto
    Sat, 10:00 - 10:45
    Track 1

  • Testing Endpoint Protection: How Anyone Can Bypass Next Gen AV

    Kevin Gennuso
    Sat, 12:00 - 12:45
    Track 1

  • Adventures in Azure Privilege Escalation

    Karl Fosaaen
    Sat, 13:00 - 13:45
    Track 1

  • Breaking & Entering via SDR, or How I defeated Wiegend over UHF/VHF, or your apartment isn't safe...

    Tim Shelton
    Sat, 14:00 - 14:45
    Track 1

  • Assessing IoT Surveillance - Arlo

    Jimi Sebree
    Sat, 15:00 - 15:45
    Track 1

  • Next-gen IoT botnets - leveraging cloud implementations for shells on 500k IoTs

    Alex Balan
    Sat, 16:00 - 16:45
    Track 1

  • Attacking with Automation: How Office 365 automation provides another new risk to the cloud

    Trent Lo
    Sat, 17:00 - 17:45
    Track 1
  • Sunday, September 8

  • Quiet Time

     
    Sun, 09:00 - 09:45
    Track 1

  • Red Team Level over 9000! Fusing the powah of .NET with a scripting language of your choosing: introducing BYOI (Bring Your own Interpreter) payloads.

    Marcello Salvati
    Sun, 10:00 - 10:45
    Track 1

  • Active Directory Security: Beyond the Easy Button

    Sean Metcalf
    Sun, 11:00 - 11:45
    Track 1

  • Incident response on macOS

    Thomas Reed
    Sun, 12:00 - 12:45
    Track 1

  • I sim(ulate), therefore i catch: enhancing detection engineering with adversary simulation

    Mauricio Velazco
    Sun, 13:00 - 13:45
    Track 1

  • Adversarial Emulation

    Bryson Bort
    Sun, 14:00 - 14:45
    Track 1

  • Closing Ceremony

     
    Sun, 15:30 - 16:30
    Track 1