Dreamlab Technologies is proud to announce its participation in DEF CON 29. DEF CON has grown to become the premier global cyber security event, bringing together the most knowledgeable experts from within the industry worldwide. Due to the continuing Corona crisis, the 29th edition, taking place from 5-8 August in Las Vegas, will be a hybrid event, allowing participants to attend in both virtual and physical format.
Sheila A. Berta (Dreamlab's Head of Research) will lead a Main Track with "The Unbelievable Insecurity of the Big Data Stack: An Offensive Approach to Analyzing Huge and Complex Big Data Infrastructures", presenting an advanced methodology, whilst identifying new high impact attack vectors in four major layers of the Big Data stack: Data Ingestion, Data Storage, Data Processing and Data Access.
Daniel Isler (Dreamlab's Senior Social Engineer Pentester and Team Leader of the Social Engineering Unit) will present in the Adversary Village. A naturally engaging storyteller, Daniel will present “How I got COVID in a RedTeam: Social engineering and physical intrusion for realistic attack simulations", an immersive Red Team exercise, highlighting the importance of social engineering actions and physical intrusion in high complexity attack simulations.
José Garduño (Dreamlab's Senior Security Consultant) will introduce “C2Centipede”, an innovative proxy tool providing threat emulation features to HTTP reverse shell tools, allowing the evasion of certain types of beaconing detection.
Finally, Javier Perez (Dreamlab's Head of Research & Development) will present in ICS Village, with a talk and real simulation exercise on "ICS Intrusion KillChain" covering a topical ‘101’ of how an attack occurs, the most common vectors - from Social Engineering to 0-days - and their respective stages in the ICS Cyber Kill Chain.