Episode Details

Back to Episodes
Webcast: When Worlds Collide: OSS Hunting & Adversarial Simulation

Webcast: When Worlds Collide: OSS Hunting & Adversarial Simulation

Episode 1 Published 5 years, 6 months ago
Description
Worlds collide as Black Hills Information Security (BHIS) brings together legendary developers in open source software (OSS) hunting and adversarial emulation projects for a discussion on the current state of the landscape and what’s coming next. As our panel hosts, Jordan and Kent (Atomic Purple Team, PlumHound), continue to focus on advocating and evangelizing for Purple Teaming in the information security community, they have invited Roberto Rodriguez & Nate Guagenti (HELK Project, Mordor) and Marcello Salvati (CrackMapExec, SILENTTRINITY) to discuss the collision of OSS Hunting and Adversarial Emulation platforms, with additional commentary from John Strand. The group will discuss Roberto Rodriguez (@Cyb3rWard0g) and Nate Guagenti’s (@neu5ron) development and maintenance of the HELK project while focusing on the ongoing development of Mordor, Datasets, and Azure Resource Manager templates. Joining the world-class hunters is Marcello Salvati (Byt3bl33d3r), developer of CrackMapExec and SILENTTRINITY to continue the discussion of OSS adversarial simulation. John Strand will add commentary on the history of adversarial simulation, hunting, and where the industry may be headed. Webcast Hosts: * Jordan Drysdale @rev10d * Kent Ickler @krelkci Special Guests: * Roberto Rodriguez @cyb3rward0g * Nate Guagenti @neu5ron * Marcello Salvatti @byt3bl33d3r * John Strand @strandjs Join the BHIS Community Discord https://discord.gg/aHHh3u5 Slides for this webcast can be found here: https://www.blackhillsinfosec.com/wp-content/uploads/2020/09/SLIDES_WhenWorldsCollide.pdf 00:00:00 – PreShow Banter™ — We’ve Lost Control 00:10:47 – FEATURE PRESENTATION: When Worlds Collide 00:14:26 – Threat Intelligence Sharing 00:25:57 – Won’t Stop Can’t Stop 00:32:06 – A Tired Community 00:38:54 – Re-Investing Open Source Projects
  • (00:00) - PreShow Banter™ — We've Lost Control
  • (09:40) - FEATURE PRESENTATION: When Worlds Collide
  • (13:13) - Threat Intelligence Sharing
  • (24:03) - Won't Stop Can't Stop
  • (29:38) - A Tired Community
  • (35:59) - Re-Investing Open Source Projects
  • (42:08) - Open Threat Research
  • (47:18) - Understand Adversary Tradecraft
  • (49:04) - Mordor Labs
  • (01:05:43) - Mordor Datasets
  • (01:08:17) - HELK
  • (01:14:14) - Threat Hunter Playbook
  • (01:30:42) - PostShow Banter
Listen Now

Love PodBriefly?

If you like Podbriefly.com, please consider donating to support the ongoing development.

Support Us