Tweet
Title: (Intermediate) Purple On My Mind: Cost Effective Automated Adversary Simulation
Description:
Automated adversary simulation is often perceived as a hard, dangerous and complicated program to implement and run. Fear no longer, our methodology and tooling will let you test and measure your defenses throughout your production environment to test not only your detection rule’s resilience but the whole event pipeline as well as your team’s response procedures. In this talk, we’ll share with the audience the open source tools we built and the methodology we use that will allow them to hit the ground running at nearly no cost.
Introduction (5 min)
Automated Adversary simulation - Design & Methodology (10 min)
State of the art (3 min)
Our approach (25 min )
Takeaways ( 3 min)
Speaker(s): Mauricio Velazco
Location: Blue Team Vlg / Blue Team Vlg - Talks Track 1
Discord: https://discord.com/channels/7082082...54317658734613
Event starts: 2020-08-07 19:30 (07:30 PM) PDT (UTC -07:00)
Event ends: 2020-08-07 20:30 (08:30 PM) PDT (UTC -07:00)
For the most up-to-date information, please either visit https://info.defcon.org, or use HackerTracker, which is available for iOS and Android. This is an automated message, and this data was last modified 2020-08-03T01:20 (UTC).
Description:
Automated adversary simulation is often perceived as a hard, dangerous and complicated program to implement and run. Fear no longer, our methodology and tooling will let you test and measure your defenses throughout your production environment to test not only your detection rule’s resilience but the whole event pipeline as well as your team’s response procedures. In this talk, we’ll share with the audience the open source tools we built and the methodology we use that will allow them to hit the ground running at nearly no cost.
Introduction (5 min)
Automated Adversary simulation - Design & Methodology (10 min)
State of the art (3 min)
Our approach (25 min )
Takeaways ( 3 min)
Speaker(s): Mauricio Velazco
Location: Blue Team Vlg / Blue Team Vlg - Talks Track 1
Discord: https://discord.com/channels/7082082...54317658734613
Event starts: 2020-08-07 19:30 (07:30 PM) PDT (UTC -07:00)
Event ends: 2020-08-07 20:30 (08:30 PM) PDT (UTC -07:00)
For the most up-to-date information, please either visit https://info.defcon.org, or use HackerTracker, which is available for iOS and Android. This is an automated message, and this data was last modified 2020-08-03T01:20 (UTC).