BEGIN:VCALENDAR
PRODID:-//vBulletin 6//EN
VERSION:2.0
CALSCALE:GREGORIAN
BEGIN:VEVENT
UID:eec42b37-d347-4ce4-a441-599ac3fcf507
DTSTAMP:20260528T141912Z
SUMMARY:Cloud-Native Attack Detection and Simulation.
DESCRIPTION:Title: Cloud-Native Attack Detection and Simulation.\n\nDescrip
 tion:\nThe cloud brings a broad range of benefits from a security perspect
 ive\, including network isolation by default\, strong identity controls an
 d unprecedented visibility. It does\, however\, bring many changes and uni
 que challenges of its own when compared to an on-premise estate\, with mod
 ern cloud environments make heavy use of containerisation\, serverless fun
 ctions and other new paradigms. As such\, many of the data sources used fo
 r threat hunting and attack detection in traditional environments are no l
 onger available. In addition\, most attacks consist of abusing legitimate 
 functionality\, making it challenging at times to differentiate the malici
 ous from the benign.\n\nBased on ﬁrst-hand experience attacking and defe
 nding large enterprises\, this talk will compare and contrast the benefits
  and challenges of attack detection in the cloud against on-premise detect
 ion\, and highlight some of the key advantages\, common pitfalls and key d
 ata sources. It will also offer advice and guidance on developing your own
  cloud attack detection capabilities in house.\n\nLastly\, it will present
  Leonidas - a cloud native toolchain that allows users to easily define\, 
 simulate and detect new attack vectors and techniques against cloud enviro
 nments\, all tied back to the MITRE ATT&CK framework. This will include de
 ploying and using Leonidas\, constructing and executing an attack path end
 -to-end\, and how to implement your own test cases. It'll also cover Leoni
 das into your detection stack to track improvement over time and support l
 earning and skills development within your team.\n\n=====\n\nYouTube: http
 s://www.youtube.com/watch?v=DSipgVlsAfo\n\n#cloudv-general-text: https://d
 iscord.com/channels/708208267699945503/732733373172285520\n\nSpeaker(s): N
 ick Jones\n\nLocation: Cloud Vlg\n\nDiscord: https://discord.com/channels/
 708208267699945503/732733373172285520\n\nEvent starts: 2020-08-09 12:30 (1
 2:30 PM) PDT (UTC -07:00)\n\nEvent ends: 2020-08-09 13:30 (01:30 PM) PDT (
 UTC -07:00)\n\nFor the most up-to-date information\, please either visit h
 ttps://info.defcon.org\, or use HackerTracker\, which is available for iOS
  and Android. This is an automated message\, and this data was last modifi
 ed 2020-08-08T05:44 (UTC).
URL:https://forum.defcon.org/node/234728
DTSTART:20200809T203000Z
DTEND:20200809T213001Z
LOCATION:Cloud Vlg
END:VEVENT
END:VCALENDAR