Let's connect at an
upcoming event!

We’re happy to support Summercon 2024, happening in Brooklyn, New York on July 19–20. Always a great time with an awesome crew — looking forward to good talks and great conversations!

We’re excited to support and be part of BSides CDMX in Mexico City on July 19, 2024. Can’t wait to connect, learn, and share ideas with the local security community — hope to see you there!

Join Alissa Gilbert (dnsprincess) as she dispels myths around RF tracking, negates some fears, and gives completely new ones in its place.

The presentation delves into securing AI & LLMs, covering threat modeling, API testing, red teaming, emphasizing robustness & reliability, sparking conversation on our interactions with GenAi.

Join Bishop Fox’s Josh Shomo and Caleb Gross at RVASec June 5 at 10:30 a.m. for a look at the real-world application of LLMs in security research.

This talk led by Bishop Fox researchers Caleb Gross & Josh Shomo cuts through the hype and offers a practical perspective that’s grounded in real-world analysis of critical bugs in widely used products.

Join Christie Terrill and Tom Eston as they share practical advice on the proactive security measures you can take today and provide a space to ask our security experts your most pressing questions.

This practical demonstration features Bishop Fox security expert Seth Art showcasing CloudFoxable, an open-source AWS security training tool that simulates real-world cloud security misconfigurations.

We’re looking forward to joining the community at this year’s H-ISAC Spring Summit in Orlando, Florida. Always a great opportunity to connect, share, and learn with healthcare security leaders.

Senior Security Consultant Berenice Flores will share how two web dashboard vulnerabilities in a ML/Big Data framework led to full AWS account privilege escalation — and what the research uncovered along the way.

Join us for our 2nd Annual Bishop Fox RSAC Livestream event - an electrifying convergence where innovation meets expertise in the realm of cybersecurity.

Marketing executive Charrah Hardamon reveals practical approaches for gaining visibility and control over increasingly complex vendor ecosystems, helping security teams balance innovation speed with appropriate risk management.

Security researcher John Hammond reveals how effective red teaming transcends technical prowess to drive meaningful security improvements through collaboration between offensive and defensive teams, helping organizations prioritize investments that truly reduce risk.

McKinsey cybersecurity leaders reveal practical strategies for communicating complex security challenges in business terms that resonate with boards and executive stakeholders, helping security leaders gain the support and resources they need.

Security pioneer Robert "RSnake" Hansen shares insights from his book "AI's Best Friend," revealing why artificial intelligence without moral frameworks poses unprecedented dangers that regulation alone cannot address.

Intelligence veterans reveal how to transform technical security findings into business-relevant insights that drive meaningful action at the executive level, helping security teams demonstrate clear value in today's complex risk landscape.

Security expert Nate Lee reveals how psychological principles and relationship-building can transform security program effectiveness, helping practitioners move beyond technical solutions to create lasting organizational change.

Security leaders from Reddit, Meta, and SeatGeek reveal how they've transformed application security from a reactive vulnerability hunt into a seamless part of the development process, creating secure environments that maintain development velocity.

Veteran security leader Dave Lewis shares how empathy, communication, and empowerment transform struggling teams into high performers, offering practical wisdom for technical experts transitioning to leadership roles.

Security leaders from P0 Security and Sphere discuss how organizations can better manage the explosion of digital identities in complex cloud environments, with special focus on often-overlooked machine identities that now vastly outnumber human users.

Rob Ragan will dive into how fine-tuning LLMs on sensitive data raises serious privacy and security concerns — and what to watch out for.

Hear from Anirban Banerjee, CEO and Co-founder of Riscosity, and Matt Twells, Sr. Solution Architect at Bishop Fox, as they explore critical considerations for developing a security program that prioritizes third-party risk reduction.

Justin Rhinehart distills for us and the broader public how this type of “marquee” research comes to market in an ethical and responsible way. Watch Now!

David Bravo will lead an AWS hacking course focused on helping security pros find and exploit common vulnerabilities in AWS environments.