Bristol Meetups

DNS as Cyber Tool & Red Team Tactics against a Windows network

Agenda:
• 6:00 pm - Social
• 6:30 pm - OWASP update
• 6:35 pm - Presentation 1: Red Team tactics against a windows enterprise lock down network infrastructure - Sadi Zane, Raytheon
• 7:30pm - Presentation 2: DNS as a Cyber Security tool - Jonny Tyers
• After - Pub: The Famous Royal Navy Volunteer (http://navyvolunteer.co.uk/)

Presentation 1: Red Team tactics against a windows enterprise lock down network infrastructure

Abstract: This talk demonstrate demonstrate Red Team technique/tactics against a windows enterprise lock down network infrastructure, from an initial foothold with user level access to domain administrator without missing security patches. This a technical talk that will cover the followings:
- Red Team infrastructure design review
- Initial foothold using native windows built tools
- Privilege escalation from authenticated user to local administrator
- Credential harvesting from Local Security Authority Service
- Lateral movement from initial foothold to primary domain controller ( Native windows Tool)
- Stealth Persistence (Native windows tool)

Bio: Sadi, a Red Team Security Consultant working for Raytheon (ACS) Advanced Cyber Security Team, delivers advanced security red team projects.Qualified OSCP Offensive Security Certified Professional and check team member.

Presentation 2: DNS as a cyber security tool
- the data you can get out of DNS
- the protection you can provide using DNS (incl vulnerabilities in DNS today)
- the ease of deploying DNS-based protection in an organisation/cloud infrastructure
- secure DNS / the future of DNS

Bio: Sysadmin, developer and cyber security entrepreneur, Jonny has been hacking, coding and reading about computers since the days of 486es and dialup modems. Until recently working in secure government systems, he lives in Bristol and runs SHEPD (cyber-as-a-service for SMEs) and consults as a security architect.