- 66
- 19 678
BSidesROC
United States
Приєднався 19 кві 2016
Security B-Sides Rochester's UA-cam channel for streaming and recorded sessions. For more information see:
Website: www.bsidesroc.com
Twitter: @BsidesROC
Facebook: BSidesROC
Website: www.bsidesroc.com
Twitter: @BsidesROC
Facebook: BSidesROC
BSidesROC 2023 You Got A Siem Now What - Chris Maulding 1080p hls
Talk description: The talk will cover what steps you should take after purchasing a SIEM to get the most out of your investment, and a step by step process of how to configure the basics
Переглядів: 11
Відео
BSidesROC 2023 Hacking and Defending APIs - Robert Wagner
Переглядів 22Місяць тому
Talk description: APIs are a leading attack vector that often get pushed into production without proper security testing. This presentation will provide an overview of each of the OWASP API Security Top 10 vulnerabilities from an adversarial perspective, along with blue-team strategies on how to build and test effective defenses on an API security stack.
BSidesROC 2023 Mind Management - Eric Woodruff
Переглядів 6Місяць тому
Talk description: Discussion regarding the management plane/metastructure for cloud environments and the dangers faced when organizations do not take the steps to securing such.
BSidesROC 2023 Catching More Files - Spotting the Adversary with Honey Techniques - Matthew Gracie
Переглядів 15Місяць тому
Talk description: Detection Engineering traditionally centers around defining and alerting on known malicious adversary actions in your environment. Deception Engineering, on the other hand, uses techniques like honeypots and honeycreds to trick an intruder into seemingly harmless actions that will generate immediate, high fidelity alerts. This talk will outline some free tools and techniques t...
BSidesROC 2023 Dont Roll a One - Tyler Hudak
Переглядів 10Місяць тому
Talk description: In this talk, I will explain the purpose and benefits of Tabletop Exercises, share some common lessons learned I have observed and provide suggestions for addressing these issues.
BSidesROC 2023 Rips, Reps and Revelations - Paul Michaud
Переглядів 5Місяць тому
Talk description: Creating cyber fire drills with Atomic Red Team to continuously improve your team’s capabilities.
BSidesROC 2023 Talk Crit Get Hit - Nicholas Doerner
Переглядів 9Місяць тому
Talk description: Vulnerability scanners such as Nessus will often flag issues such as SSL/TLS as critical rated problems. However, these types of vulnerabilities will be unlikely to gain a penetration tester domain admin or even a foothold within a targeted network. This talk examines the output from such tools and the impact of lower severity findings when chained together to gain full domain...
BSidesROC 2023 TikTok Under Attack - Guy Nachshon
Переглядів 7Місяць тому
Talk description: This talk will cover a recent supply chain attack in which malicious software was hidden inside a package hosted on a trending GitHub repository and promoted through social engineering tactics. The attack was successful in attracting a large number of users and highlights the importance of being cautious when installing software from untrusted sources and the need for secure s...
BSidesROC 2023 Hunting Before Day Zero - Ryan LaBouve
Переглядів 17Місяць тому
Talk description: “Hunting Before Day Zero” is a talk that will delve into details of file and network access on Linux to expose signals of compromise that might indicate our systems are infected and possibly by a zero-day vulnerability!
BSidesROC 2023 What the Fuzz - Josh Grant
Переглядів 22Місяць тому
Talk Description: Fuzz Testing is powerful and cool. But what is it?
BSidesROC 2023 Hunting Supply Chain Threats - Craig Chamberlain
Переглядів 17Місяць тому
Talk Description: Come see a case detailed study of a supply chain incident and how it was detected by applying anomaly detection to Cloud API logs.
BSidesROC 2023 Hardware Hacking - Edward Warren
Переглядів 38Місяць тому
An introduction to exploring the Bluetooth interface for aspiring hardware hackers.
BSidesROC 2023 Keynote - Alyssa Miller
Переглядів 8Місяць тому
Talk Description: In her keynote, Alyssa Miller will share her origin story of how she navigated a journey from a 4 year-old who loved taking things apart, to a teen with a passion for technology, through her various roles in tech, and now finds herself in the C-Suite. She’ll tell the tales of crazy hacks, serendipitous opportunities, and the lessons she learned along the journey. You’ll learn ...
BSides Rochester 2019 - Methods for Parsing New Mobile Apps: All about that data
Переглядів 1045 років тому
Talk Description: Every day new mobile applications hit the App Store / Google Play. Often these new apps contain chat functions or other storage that can be crucial digital forensic evidence in a case. Often these apps are not yet supported by commercial tools. This talk will discuss methodologies for discovering and parsing data from unsupported applications. We will go through the methodolog...
BSides Rochester 2019 - OWASP Amass Beyond Subdomain Enumeration
Переглядів 1,1 тис.5 років тому
BSides Rochester 2019 - OWASP Amass Beyond Subdomain Enumeration
BSides Rochester 2019 - Goofkit: Getting goofy with kernel functions
Переглядів 1725 років тому
BSides Rochester 2019 - Goofkit: Getting goofy with kernel functions
BSides Rochester 2019 - Threat Hunting and Other Arcane Magic
Переглядів 3325 років тому
BSides Rochester 2019 - Threat Hunting and Other Arcane Magic
BSides Rochester 2019 - Using Deep Learning to Undermine Tor
Переглядів 1455 років тому
BSides Rochester 2019 - Using Deep Learning to Undermine Tor
BSides Rochester 2019 - Pwning a cheap IP camera for fun, but not profit
Переглядів 1775 років тому
BSides Rochester 2019 - Pwning a cheap IP camera for fun, but not profit
BSides Rochester 2019 - Jackson Deserialization Vulnerabilities
Переглядів 3,8 тис.5 років тому
BSides Rochester 2019 - Jackson Deserialization Vulnerabilities
BSides Rochester 2019 - How to Fix the Diversity Gap in Cybersecurity
Переглядів 835 років тому
BSides Rochester 2019 - How to Fix the Diversity Gap in Cybersecurity
BSides Rochester 2019 - The Annihilation
Переглядів 5055 років тому
BSides Rochester 2019 - The Annihilation
BSides Rochester 2019 - Data Access Rights Exploits under New Privacy Laws
Переглядів 3065 років тому
BSides Rochester 2019 - Data Access Rights Exploits under New Privacy Laws
BSides Rochester 2019 - More Tales From the Crypt…Analyst
Переглядів 845 років тому
BSides Rochester 2019 - More Tales From the Crypt…Analyst
BSides Rochester 2018 - IoT 4n6: The Growing Impact of the Internet of Things on Digital Forensics
Переглядів 1,2 тис.6 років тому
BSides Rochester 2018 - IoT 4n6: The Growing Impact of the Internet of Things on Digital Forensics
BSides Rochester 2018 - Detect Me If You Can
Переглядів 1276 років тому
BSides Rochester 2018 - Detect Me If You Can
BSides Rochester 2018 - Ducky-in-the-Middle: Injecting Keystrokes into Plaintext Protocols
Переглядів 1796 років тому
BSides Rochester 2018 - Ducky-in-the-Middle: Injecting Keystrokes into Plaintext Protocols
BSides Rochester 2018 - Keynote with Matt Mitchell
Переглядів 2186 років тому
BSides Rochester 2018 - Keynote with Matt Mitchell
BSides Rochester 2018 - Building the Panopticon: Centralized Logging and Alerting With Free Tools
Переглядів 566 років тому
BSides Rochester 2018 - Building the Panopticon: Centralized Logging and Alerting With Free Tools
How to monitor the "time for response" for time base payloads ?
Within the last 3 years I'm amber and I want to see the videos of me that are on UA-cam without my permission that is very personal
29:25 He meant to say GEXF and Gephi
Hello Sir, i can't reflection data in TemplatesUtil.java. When reconstruct object TemplatesImpl, the field _tfactory is null. Please have me to fix that!
One of the most under-rated and under-viewed videos... Great vid and tool. Thanks a lot Justin. Big fan of both the Decoder Improved and AutoRepeater. This is as relevant in 2021 as it was when it got released. Thanks again.
Just discovered AutoRepeater and it's great - thanks to Justin Moore for creating this very useful piece of pentesting kit
Brilliant, thank you!
Cool, would have preferred not getting 3 different requests for 3 users separately at 43:50, if the results could be combined in a single request and displayed below, would make it more cool, just like AuthMatrix.
Thank you
Hi Bsides ROC, we are not able to connect Auto repeater in burp community version, please could you confirm if this need burp pro ??
It does support community version it requires java 8
Hide your ESXI servers from Hulto
Just want to tell you guys... if you stuck around and sacrificed your lunch for the bonus slides, I hope it was worth it! Thank you BSidesRoc for this opportunity to give back to the community! Keep on Roc'in!
谢谢
This tutorial is brilliant, I managed to get the commands you use and done it with an app. Thanks for the help on this!