BH2021

The reason our founder started Detectify is that they wanted to automate hacker knowledge and make it scalable. This is very different from how most hackers work today and what we believe will revolutionize hacking. This segment is sponsored by Detectify. Visit https://securityweekly.com/detectify...

Dradis is an open source tool for information security pros that simplifies collaborating and reporting. Combine the output of different scanners, add your manual findings, centralize work across the team, and generate a report with a click. Segment Resources: https://www.blackhat.com/us-21/ars...

Eviatar will explain how they built two tools: Kubiscan and Kubesploit (the one Eviatar will show in the arsenal) to help red and blue teamers to make k8s more secured.

Defending enterprise networks against attackers continues to present a difficult challenge for blue teams. Prevention has fallen short; improving detection & response capabilities has proven to be a step in the right direction. However, without the telemetry produced by adversary behavior, building ...

Derek Johnson will be covering Matt Tait's keynote and another session on major supply chain attacks over the past year and how they're changing best practices in DFIR. Supply chain attacks and software interdependence are creating an existential crisis for the cybersecurity industry XDR, autom...

Tony "TJ Null" from Offensive Security will discuss the role of the community in learning infosec, particularly pentesting, and also in continuing education. Additionally, he will offer some practical tips on learning pentesting with help from the community. This segment is sponsored by Offensive...

Shifting security left is good - but it’s an incomplete strategy that often leads to a false sense of security. In this segment, Sonali will discuss how organizations can reduce their risk of breach by embracing the modern AppSec techniques, that will allow development, operations and security teams...

Data exploration is one of the most challenging areas for data scientists and analysts. Charles has been working on some new tooling which makes data exploration a lot simpler. He recently launched a startup called DataDistillr which encapsulates a lot of the open source work as well.

There has been a growing interest in exploring if and where private sector companies are obliged to turn over data to a foreign government in exchange for market access. My Black Hat presentation introduces a new global index of countries based on government-mandated data access requirements and why...

A boots on the ground look at hacker summer camp after a tumultuous year, amid a pandemic that's encouraged a whole bunch of the regulars to stay home. What is Black Hat right now? Joe will offer a preview of the rest of Las Vegas conference week, including looks at emerging research released on ...