Middle Ground Breaking Ground Common Ground Ground Floor Ground Truth Hire Ground I Am The Cavalry PasswordsCon Proving Ground Training Ground Underground

Tuesday
August 9th

Wednesday
August 10th

8:00

Registration opens

8:30

Middle Ground opens

9:30-10:25

Keynote in Breaking Ground

10:30-12:30

Talks

12:30-14:00

Lunch break

14:00-15:55

Talks

16:00-16:55

Happy hour

Sponsored by
Attack Surface Community

17:00-19:00

Talks

19:00

Closing ceremonies in Breaking Ground

22:00-2:00

Pool Party

Sponsored by
Microsoft

9:30-10:25

Beyond logs and time series: observability for security & privacy

10:30-11:25

A Tale of Two Malware Families - Overcoming Anti-Forensics and Foiling Botnets in the Cloud

11:30-12:25

Everything I know about prototype pollutions: how to react when confronted to a brand new vulnerability

14:00-14:55

The Northern Virginia Shuffle: Lateral Movement and other Creative Steps Attackers Take in AWS Cloud Environments and how to detect them.

15:00-15:55

Cookie Monster: Exfiltrating Data and More, Byte by Tasty Byte

17:00-17:55

Detecting Log4J on a global scale using collaborative security

18:00-18:55

Ransomware Emulation Done Right

10:30-11:25

Trust Me, I'm a Robot: Can we trust RPA with our most guarded secrets?

11:30-12:25

Understanding, Abusing and Monitoring AWS AppStream 2.0

14:00-14:55

The Technical Trap

15:00-15:55

Secure IT Operations, or, How to Shoehorn Security into a Small/Medium Business

17:00-17:55

Weaponizing Your Fitness Tracker Against You: Health, Fitness, & Location Tracking in a Post-Roe World

18:00-18:55

Busting Biases in Infosec

10:30-11:25

I got an alert, now what?

11:30-12:25

Malware Analysis - Red Team Edition

14:00-14:55

Parsing Differential Problem

15:00-15:55

Tomb Raider - Automating Data Recovery and Digital Forensics

17:00-17:55

Zero Days should not be a fire drill

18:00-18:55

Code Dependency: Chinese APTs in Software Supply Chain Attacks

10:30-11:25

Long Overdue: Making InfoSec Better Through Library Science

11:30-12:25

It was a million to one shot, Doc. Million to one' -- Lessons learned while modeling rare catastrophic cyber loss events

14:00-14:55

Attack Flow: From Data Points to Data Paths

15:00-15:55

Weeding Out Living-off-the-land Attacks at Scale

17:00-17:55

Repurposing Vulnerability Tickets to Predict Severity Levels: An Introduction to Natural Language Processing and Classification Algorithms

18:00-18:55

Model Robustness Isn't Security

Don't forget to take advantage of our Career Coaches & Resume Reviewers

10:30-11:25

Management Hacking 101: Leading High Performance Teams

11:30-12:25

Penetration Testing Experience and How to Get It

14:00-14:55

So Who’s Line Is It Anyway? (A Recruiter Panel)

10:30-11:25

M33t the Press: CyberSafety Got Real… Now What?

11:30-12:25

#SBOM is here: making progress (not excuses)

14:00-14:55

ICS Security Assessments 101 or How da Fox I Test Dis?

15:00-15:55

We're not from the government, but we're here to help them help you

17:00-17:55

IATC Workshop Part 1: Next Phase of IATC Mission

18:00-18:55

IATC Workshop Part 2: Next Phase of IATC Mission

10:30-11:25

I know...But I Have a System

11:30-12:25

Protecting Against Breached Credentials in Identity Workflows

14:00-14:55

Secrets of the Second Factor: Threat Hunting with Multi Factor Authentication

15:00-15:55

The One With The Foreign Wordlist

17:00-17:55

Cracking passwords for good, bad & commercial purposes: second thoughts on password cracking

18:00-18:55

The Exclave Experience: Relocating To 'Almost Canada'

10:30-10:55

How to Succeed as a Freelance Pentester

11:00-11:25

Oauth third party not departing

12:00-12:25

Reverse engineering a DOS PC FMV Game from 1994

14:00-15:55

PG Forensics. (No, the other Forensics.)

17:00-17:55

PG Forensics. (No, the other Forensics.)

18:00-18:25

Solid Tradecraft for Cryptomarket Drug Trafficking

8:30-12:25

Adding DAST to CI/CD, Without Losing Any Friends WORKSHOP

8:30-12:25

CICD security: A new eldorado (training)

8:30-12:25

Building Security Automation Using Jupyter Notebooks

Code of Conduct & Photo Policy COVID Information

Security BSides Las Vegas, Inc. is a federally recognized 501(c)(3) since 2012

©2023 Security BSides Las Vegas, Inc.