Spy vs. Spy - Tip from the trenches for red and blue teams

DerbyCon 7.0 - Legacy

Presented by: Tom McBee, Jeff McCutchan
Date: Sunday September 24, 2017
Time: 12:30 - 12:55
Location: Stable Talks

This talk outlines some common, but effective, red team tactics as well as some of the defensive countermeasures for them. Boring, right? Wrong, because it doesn't stop there! Next we will escalate the complexity and sneakiness of the attacks for the purpose of dealing with the defensive countermeasures. We go back and forth like this, through a few iterations of each attack and its defenses. We conclude with an analysis of defensive trends, and a suggestion for shifting the way defense is commonly thought of.

Attendees will leave this talk with an understanding of defensive techniques used to mitigate common attacks, offensive tricks to increase the success of the same attacks, and an idea for improving the way organizations commonly think about defense.

Tom McBee

Tom's background began in Systems Administration before moving over to Information Security in 2014. Since then he's focused on ways to help defend networks and systems from threats, while trying to increase his own offensive skillsets. He is currently working as a Senior Consultant at SecureState. Tom - @t3phanis

Jeff McCutchan

Jeff has been working in IT for about eight years with a focus on security for the past five. He enjoys performing offensive services as well as helping others learn and grow through training and mentoring. He is currently working as an Associate Principal Consultant at SecureState. Jeff - @jamcut


KhanFu - Mobile schedules for INFOSEC conferences.
Mobile interface | Alternate Formats