After spending 13 years defending systems and organizations against attackers, I decided to switch roles and become the attacker. I realized I needed to expand my skills and learn the advanced attacker techniques if I wanted to truly be able to help organizations defend themselves. In this talk, I am going to share with you the tips, tricks, and techniques I use when attacking an organization and how you can defend against them without spending any money! I will cover physical controls as well as electronic. I'll go through some of my attacks and also share when those attacks failed because of simple defensive strategies. So, come and see how a former defender is now successfully breaking into organizations and learn what you can do to stop me!
Ben Ten is a Senior Security Consultant with TrustedSec doing penetration testing and consulting. He spent over 15 years doing Application & Web Development; Security Implementation, Consulting, & Training; Federal Regulation and Compliance oversight in relation to Information Technology (HIPAA, HITECH, PCI); and managing a team of developers and IT professionals. He is the creator of the PoshSec Framework and works with the PoshSec development team. He has spoken at several conferences over the past 4 years including ShowMeCon, DerbyCon, BSides Chicago/Raleigh/Dallas Fort Worth, HackCon Norway, and more.