Executive brief on how PCI DSS 4.0 affects offensive security practices, penetration testing, and segmentation testing. Watch Now

Featured Workshops & Training

Sliver Workshop Part 2: Staging & Automation

In our second workshop, we’ll explore Sliver’s new implant staging process and demonstrate basic CLI automation features. We’ll also walk through Sliver’s supported pivot types for lateral movement, including TCP, and wrap up by exploring automation options using the SliverPy project.

Dufflebag uncovering secrets in exposed ebs volumes Video Thumbnail
Workshops & Training

Dufflebag Deep Dive: Uncovering Secrets in Exposed EBS Volumes

In this video, Dan Petro demonstrates how the Bishop Fox open source tool Dufflebag works.

Watch our Derpcon 2020 demystifying capture the flags ctfs video
Workshops & Training

DerpCon 2020 - Demystifying Capture The Flags (CTF)s

In the talk: Demystifying CTFs, Barrett Darnell will provide an overview of CTF formats, the skills they require and the experience they develop, and conclude with a plethora of CTF resources for those wanting to participate.
Watch our Derpcon 2020 Video: ham hacks breaking into the world of software defined radio with kelly albrink
Workshops & Training

Ham Hacks: Breaking into the World of Software Defined Radio

If you’re a hacker who has always been too afraid of RF protocols to try getting into SDRs, or you have a HackRF collecting dust in your closet, this talk will show you the ropes.

Watch our Derpcon 2020 net roulette exploiting insecure deserialization in telerik ui video
Workshops & Training

.NET Roulette: Exploiting Insecure Deserialization in Telerik UI

Telerik UI for ASP.NET AJAX is a widely used suite of UI components for web applications.
Cover page .net roulette exploiting insecure deserialization in Telerik ui
Workshops & Training

.Net Roulette Exploiting Insecure Deserialization in Telerik UI

DerpCon 2020 presentation reviews how .NET deserialization works and how to get shells on real applications.

Ham Hacks: Breaking into the world of software defined radio illustrated with a piglet with a microphone
Workshops & Training

Ham Hacks: Breaking into the world of software-defined radio

DerpCon 2020 presentation explores how to find, capture, and reverse-engineer RF signals.

Slide deck cover of Demystifying Capture the Flags (CTFs) presentation by Barrett Darnell
Workshops & Training

Demystifying Capture the Flags (CTFs)

DerpCon 2020 presentation on CTF formats, the skills they require, and the experience they develop.

Cover page expose yourself without insecurity bsides atlanta 2020
Workshops & Training

Expose Yourself Without Insecurity: Cloud Breach Patterns

Presentation from BSides Atlanta 2020 explores the unprecedented level of exposures in the Cloud and how they can be found.

Cover slide attacking the data before the decision Rhett Greenhagen
Workshops & Training

Attacking the Data Before the Decision

Presentation from BSides Tampa 2020 explores the vulnerabilities of machine learning systems and how to mitigate them.

Cover slide how to write like it's your job
Workshops & Training

How to Write Like It's Your Job

Presentation from BSides San Francisco 2020 offers practical advice for security writers.

Watch our Zivideobee hacking smarter home invasion with zigdiggity video
Workshops & Training

Zigbee Hacking: Smarter Home Invasion with ZigDiggity

Existing Zigbee hacking solutions have fallen into disrepair, having barely been maintained, let alone improved upon. Left without a practical way to evaluate the security of Zigbee networks, we've created ZigDiggity, a new open-source pentest arsenal from Bishop Fox.
Watch our Def con 27 2019 finding secrets in publicly exposed ebs volumes video
Workshops & Training

Finding Secrets In Publicly Exposed EBS Volumes

In this talk, Ben Morris shows how he found all sorts of secrets and associated data—passwords, SSH private keys, TLS certificates, application source code, API keys, and anything else that might be stored on a server hard disk.

This site uses cookies to provide you with a great user experience. By continuing to use our website, you consent to the use of cookies. To find out more about the cookies we use, please see our Privacy Policy.