Middle Ground Breaking Ground Common Ground Ground Floor Ground Truth Hire Ground I Am The Cavalry PasswordsCon Proving Ground Training Ground Underground

Tuesday
August 8th

Wednesday
August 9th

12:30-13:55

Lunch Break

20:00-02:00

Volunteer Appreciation Poolside Karaoke

08:00-08:05

Registration Re-Opens

08:30-08:55

Middle Ground Opens Day 2

09:30-10:30

Day Two Opening Remarks & Keynote in Breaking Ground

10:30-12:30

Talks

12:30-14:00

Lunch Break

14:00-15:55

Talks

16:00-16:55

Happy Hour

17:00-18:55

Talks

20:00-21:30

Friends Of Bill W Meet-Up

22:00-04:00

BSides Las Vegas Pool Party

09:00-09:20

Opening Remarks - Day Two

09:30-10:15

From LLM Obstacles to Open Doors: A Tale of Three CISOs

10:30-11:15

Wolves in Windows Clothing: Weaponizing Trusted Services for Stealthy Malware

11:30-12:15

Mainframe Hacking for CICS and Giggles

13:30-13:55

An Everything Is On Fireside Chat with Jen Easterly, Director of US C.I.S.A.

14:00-14:45

Breaking Business as Usual: Attacking Android Enterprise Solutions

15:00-15:45

Beyond the Perimeter: Uncovering the Hidden Threat of Data Exfiltration in Google Cloud Platform

17:00-17:45

The Ever-shifting Habits of Cloud-focused Malware Campaigns

18:00-18:45

Oops, I Leaked It Again - How we found PII in exposed RDS Snapshots

19:00-19:45

Closing Ceremony

10:30-11:15

Cyber Crash Investigations: Seizing the Opportunity to Learn from Past Crises

11:30-11:50

Conti Leaks and CARVER Analysis for Threat Intel Analysts

12:00-12:20

Vulnerability Intelligence for All: Say Goodbye to Data Gatekeeping

14:00-14:45

Your Ad Here: Helping your organization build their security brand

15:00-15:45

Big SIEM Energy at micro-SIEM cost

17:00-17:20

Sure, Let Business Users Build Their Own. What Could Go Wrong?

17:30-17:50

Are We too Early for the Party? (the perils of Baking Cyber in from the Beginning)

18:00-18:20

Good Doesn't Always Win: Understanding technical and enterprise tradeoffs in Cybersecurity

18:30-18:50

What the Yandex Leak Tells Us About How Big Tech Uses Your Data

10:30-11:15

Enemy Within: Leveraging Purple Teams for Advanced Threat Detection & Prevention

11:30-12:15

Open Source GitOps for Detection Engineering

14:00-14:20

You’ve Gained +2 Perception! Leveling Up Your Red Team with a New Maturity Model

14:30-14:50

Actions have consequences: The overlooked Security Risks in 3rd party GitHub Actions

15:00-15:45

Navigating Security pitfalls during M&A : Playbooks & Strategies for doing acquisitions right

17:00-17:45

The Art of Letting Go: Secure delegation of permissions in AWS environments

18:00-18:45

Next Generation Enterprise Security

10:30-11:15

Cyber risk: How does cyber events become so costly?

11:30-11:50

Double Entry Accounting for Security

12:00-12:20

Overcoming Barriers in Security DSLs with BabbelPhish: Empowering Detection Engineers using Large Language Models

14:00-14:45

Cognitive Security and Social Engineering: A Systems-Based Approach

15:00-15:45

System Dynamics in Risk Management: A Primer

17:00-17:45

Playing Games with Cybercriminals

17:55-18:40

Regular expressions are good, actually: A technical deep-dive into an ideal infosec regex implementation

Don't forget to take advantage of our Career Coaches & Resume Reviewers

10:30-11:15

Management Hacking 102: Personalities, Empathy, and Difficult Conversations

11:30-12:15

Separating Fact from Fiction: The Realities of Working in Government

12:30-13:15

It's all about Talent

13:30-14:15

Home Labs for fun and !profit (Put your home lab on your resume!)

15:00-18:00

Resume Review & Career Coaching (Day 2)

10:30-10:45

Introduction to IATC Day Two

10:45-12:30

The British are Coming! (To Talk IOT Secure By Design)

14:00-15:55

Saving Lives in Healthcare: Trust, Teamwork, Tangible Outcomes (Decade of Change) with special government teammates

17:00-18:50

A Hacker’s Guide for Changing The World (and Where do we go from Here?)

10:30-11:15

Passwords: Policies, Securing, Cracking, and More

11:30-11:50

How to Handle Getting Dumped: Compromised Passwords

14:00-14:45

How I Met Your Printer

17:00-17:45

The attackers guide to exploiting secrets in the universe

18:00-18:45

Trusted Devices: Unlocking a Password Manager without a password

10:30-10:55

The Birds, the Bees, and the CVEs: Understanding the Novel Vulnerabilities in Critical Infrastructure

11:00-11:20

The Brazillian DeepWeb. How Brazilian fraud groups work on Telegram and WhatsApp

11:30-11:55

Shining a light into the security blackhole of IoT and OT

12:00-12:25

Building a Culture of Cybersecurity: A Case Study Approach to Enhancing Risk Management

10:30-18:30

Email Detection Engineering and Threat Hunting

10:30-14:30

Linux Digital Forensics: a theoretical and practical approach

10:30-18:30

Cyber Threat Hunting (CTH) -- Day 2

10:30-18:00

Defense-in-Depth engineering

10:30-14:30

Pentesting ICS 101

15:00-19:00

Build Your Own Cat-Shaped USB Hacking Tool!

14:00-14:45

Gang Gang: Assembling and Disassembling a Ransomware Gang

15:00-15:45

Hunting Cryptoscam Twitter Bots: Methods, Data & Insights

17:00-17:45

It's not the end of the world but you can see it from here.

18:00-18:45

For Intel and Profit: Exploring the Russian Hacktivist Community

Code of Conduct & Photo Policy COVID Information

Security BSides Las Vegas, Inc. is a federally recognized 501(c)(3) since 2012

©2023 Security BSides Las Vegas, Inc.