Watch the stream
We all hear about APT, but most breaches aren’t really by A (advanced) or P (persistent) threat actors. In this talk, Tim will discuss simple ways for attack and defense, and to show you that often times the “dumb” stuff can be super effective. And as an experienced infosec professional, we can learn a lot of new folks. “Newbs” have valuable insight that isn’t poisoned by “that’s how we’ve always done it” or “this is how X works”. Experienced folks can learn a lot from less experienced folks, and they can go a long way in their development… or than can crush them. Let’s help each other be better.
Tim Medin ,
Tim Medin (@TimMedin) is the CEO of Red Siege Information Security. Red Siege is one of the most trusted information security consulting firms in the industry that concentrates on the latest threats to organizations, as well as providing resources and education to the industry on how to stay ahead with an active offensive discord, the weekly Wednesday Offensive, and monthly live-streamed SiegeCasts. Tim is also a Senior Instructor and course author of the flagship penetration testing course (SEC560 Enterprise Penetration testing) at SANS, the largest source for information security training and security certification in the world. Throughout the course of his career, Tim has performed penetration tests on the entire range of organizations and technologies. Tim has gained information security experience in a variety of industries including previous positions in control systems, higher education, financial services, and manufacturing. Tim is the creator of Kerberoasting, a widely utilized Red Team penetration test technique to extract kerberos tickets in order to offline attack the password of enterprise service accounts. Tim earned his MBA through the University of Texas and recently completed an eMBA equivalent through Harvard.