plug
Plug started his journey in computer security in 1996 when he discovered a 2600 magazine, eventually leading him to his first LA2600 meeting in 1998. From that point forward, he has been involved in computer security. He is a Sr. Defcon Blue Team Village member and leads detection and observability at a tech company. In his free time, he enjoys building Legos and playing with synthesizers, and when possible, he volunteers his time to computer security events.
Sessions
Fact vs Fiction: Starting at zero how to approach and handle an InT incident from a real-world use case, and then an overview of how InT is both the same and yet different from a traditional incident.
Foe vs Friend: For the right peas of mind, a primer on using a post-mortem to shift into preparation to proactively manage InT risks, plus how to preclude the usual pitfalls to promote positive reinforcement and minimize paranoia.
Securing Engineering is a core element of security. In this session, you will hear how the Obsidian Engineers collaborated with the Red Team to architect and build this year's Obsidian adversary simulation environment. PS: You will be able to make your own too!
Come listen to some grouchy, well worn Incident Responders talk about the planning and reality of staging a live fire DFIR simulation, and how even well planned exercises, just like any other IR never go as planned.
Security is nothing without visibility, join a group of practitioners as they outline ways to get you started in detection engineering.