BEGIN:VCALENDAR
VERSION:2.0
PRODID:-//Black Hills Information Security, Inc. - ECPv6.15.20//NONSGML v1.0//EN
CALSCALE:GREGORIAN
METHOD:PUBLISH
X-ORIGINAL-URL:https://www.blackhillsinfosec.com
X-WR-CALDESC:Events for Black Hills Information Security, Inc.
REFRESH-INTERVAL;VALUE=DURATION:PT1H
X-Robots-Tag:noindex
X-PUBLISHED-TTL:PT1H
BEGIN:VTIMEZONE
TZID:America/New_York
BEGIN:DAYLIGHT
TZOFFSETFROM:-0500
TZOFFSETTO:-0400
TZNAME:EDT
DTSTART:20210314T070000
END:DAYLIGHT
BEGIN:STANDARD
TZOFFSETFROM:-0400
TZOFFSETTO:-0500
TZNAME:EST
DTSTART:20211107T060000
END:STANDARD
BEGIN:DAYLIGHT
TZOFFSETFROM:-0500
TZOFFSETTO:-0400
TZNAME:EDT
DTSTART:20220313T070000
END:DAYLIGHT
BEGIN:STANDARD
TZOFFSETFROM:-0400
TZOFFSETTO:-0500
TZNAME:EST
DTSTART:20221106T060000
END:STANDARD
BEGIN:DAYLIGHT
TZOFFSETFROM:-0500
TZOFFSETTO:-0400
TZNAME:EDT
DTSTART:20230312T070000
END:DAYLIGHT
BEGIN:STANDARD
TZOFFSETFROM:-0400
TZOFFSETTO:-0500
TZNAME:EST
DTSTART:20231105T060000
END:STANDARD
END:VTIMEZONE
BEGIN:VEVENT
DTSTART;TZID=America/New_York:20221213T120000
DTEND;TZID=America/New_York:20221213T160000
DTSTAMP:20260428T123209
CREATED:20220920T183219Z
LAST-MODIFIED:20220920T183219Z
UID:10000596-1670932800-1670947200@www.blackhillsinfosec.com
SUMMARY:Applied Purple Teaming w/ Kent Ickler and Jordan Drysdale
DESCRIPTION:Register: https://www.antisyphontraining.com/applied-purple-teaming-w-kent-ickler-and-jordan-drysdale/ \nYou’ve heard this story before. Bad actor walks into a network and pillages the place in swift action. CIO asks: “Where did we go wrong?” SysAdmin replies “our password\, remote access\, workstation restriction\, and lack of application safelisting policies. Oh\, and our SIEM didn’t notify us. We just weren’t ready for that attack.” \nIn a significant change from the original course\, students will be introduced to Microsoft Azure and Sentinel. Each student will be responsible for deploying a cloud lab that includes an Active Directory domain\, a C2 server\, and integration with AZ Sentinel’s detection platform. All of this will be taught through a proven framework for purple team operations that results in better business outcomes. \nEach student will then pollute the AD domain with garbage using BadBlood and wreak havoc on the environment through an updated iteration of the following labs: \n\nOrganizational reconnaissance\nBloodhound\, Sharphound\, and Neo4j\nPlumhound\nGroup policy preferences\nCommand and control operations\nCanary accounts for detecting password sprays and Kerberoasting\nFile share poisoning via URL and LNK files\nPass the hash attacks\nDCSync operations\nPassword cracking with John the Ripper\nKerberoasting attacks\nAtomic Red Team\n….and more….\n\nStudents will have an opportunity to attack their own in-class Active Directory environment with Red Team tactics\, implement Blue Team defensery\, and manage an environment designed to prevent\, slow\, identify\, and highlight attacks. Additionally\, the course will guide students through configuring no-nonsense attack identification and alerting that is essential to an effective SOC operation. \nIn a live environment\, students will have the opportunity to demonstrate a secured enterprise by utilizing the MITRE ATT&CK Framework\, Red Team tactics\, and Blue Team defenses to identify\, slow\, and stop attacks. \nImplement better security and tell your CIO how everything went right!
URL:https://www.blackhillsinfosec.com/event/applied-purple-teaming-w-kent-ickler-and-jordan-drysdale/2022-12-13/
LOCATION:MD
CATEGORIES:Training
ATTACH;FMTTYPE=image/png:https://www.blackhillsinfosec.com/wp-content/uploads/2016/03/Applied-purple-teaming-graphic-1024x576-1.png
END:VEVENT
BEGIN:VEVENT
DTSTART;TZID=America/New_York:20221213T163000
DTEND;TZID=America/New_York:20221213T173000
DTSTAMP:20260428T123209
CREATED:20220624T204221Z
LAST-MODIFIED:20220920T184909Z
UID:10000500-1670949000-1670952600@www.blackhillsinfosec.com
SUMMARY:AASLR: Antisyphon Address Space Layout Randomization
DESCRIPTION:AASLR will have infosec professionals sharing their knowledge on tools\, techniques\, and procedures and then answering a lot of your questions on everything you can think to ask. \nStreamed live every Tuesday and Wednesday @ 4:30 pm. \nhttps://www.twitch.tv/antisyphon
URL:https://www.blackhillsinfosec.com/event/aaslr-antisyphon-address-space-layout-randomization/2022-12-13/
LOCATION:MD
CATEGORIES:Livestream
ATTACH;FMTTYPE=image/png:https://www.blackhillsinfosec.com/wp-content/uploads/2022/06/antisyphon_livestream_v1.png
END:VEVENT
END:VCALENDAR