Ghidra is considered to be a game-changer tool since its release by the NSA as an open-source software reverse engineering framework in March 2019. It is a feature-rich, highly customizable, and scalable suite. In Cyber Security, it is extensively used by IR and Malware Analysis teams. We will demo how to properly configure and use the tool and explain some of the excelling advanced features that make the tool shine and stand out among other tools.

The topics briefly cover the hiring process within End Users, Vendors and Cybersecurity services companies and organizations. and how you can enhance this process with experities shortage in the market today.

The talk will start by briefly explaining Windows OS authentication mechanisms such as NTLMv1 NTLMv2 & some of its flaws. Next, it will dive into the Kerberos protocol, which is the most recent and mature authentication protocol used by Microsoft until today. Moreover, the talk will cover some of the most interesting attack vectors against Kerberos with real world examples.

This talk will give you an insight into the significant role of hardware in cybersecurity. The talk will start off by showcasing in-house developed apparatus mostly utilized in Red Teaming Operations. Such as, USB Rubber Duckies and cable implants. The presentation will also briefly cover the fundamentals of Hardware Penetration Testing. Towards the end of the talk, we will show you the ropes of bypassing rolling code systems for wireless attacks

This talk will give you an insight about ADAz security Attack and defense and it highlights most of the attacks and how to defend yourself from them.

Security incident handling is one of the most important essential topics in the security field, incident handling is a culture, and it has a profound relationship with business continuity, and play a great role in laying down the plans for future investments, in this talk, we will introduce attendees to the incident handling and response, and we will discuss the 6 phases of incident handling and how they should affect your career path decision. Topics discussed:

• Introduction to incidents handling.
• The six phases of incident handling:
  • Preparation
  • Identification: Monitoring, Detection, Categorization, and Initial response
  • Containment.
  • Eradication.
  • Recovery.
  • Lesson learned (or follow-up).
• Tools and disciplines.
• Responsibilities.
• Threat Intelligence and Threat Modeling.
• Demo time.

In this topic, we will discuss several techniques of code injection and we will focus on answering two main questions:

• The first one is how does it happen?
  • From a “red team” perspective, we will see the process of how attackers inject malicious code remotely, which could be executable, DLL, or even shellcode.
• The second one is how can we detect it?
  • From a “Blue Team” perspective, we will see the challenges that the Blue Team is facing while detecting these kinds of attacks.

An introduction to the cybersecurity governance concept, why it is important, and how it can be influenced by external and internal factors. We will also discuss the business drivers for the cybersecurity governance and how we can embed it inside the entities.

In this workshop, we’ll have a brief introduction about the concept of bug bounty hunting and how it has changed the game in the last few years improving the overall security of applications. We’ll discuss in detail , with a live walkthrough, about finding rare vulnerabilities that are usually missed by researchers and also unknown or misunderstood by developers. We’ll showcase examples of these vulnerabilities found in the wild and specifically in applications developed and maintained by big tech companies like Facebook. We’ll give some tricks to simplify the process of finding them and some thoughts on how to eliminate these bugs in an early stage of a secure SDLC and if not, how to prevent some of them with new security solutions introduced by browsers.

I regularly have conversations with cybersecurity leaders and experts across a range of industries. Recently on my Cyber Security Effectiveness Podcast, I’ve spoken with the board members from several market-leading companies, in the public and private sectors, to understand their perspectives on cybersecurity.

These conversations demonstrate that board members are paying close attention to their organizations’ security programs — their approach and effectiveness and the impact on risk posture. Additionally, board members’ influence on the direction of a company’s security program has grown. As a result, IT leaders must report regularly that security technology, people, and processes are optimized to protect and defend the organization so that when a breach or attack does take place, it will have minimal impact on the brand and bottom line.

Attendee takeaways:

• Understanding what boards really care about
• Measuring and trending security effectiveness
• Rationalizing – exposing gaps, retiring ineffective solutions, and prioritizing investments
• Interpreting risk predicated on an intelligence-led approach to security
• Communicating effectively

1. IAC Systems Security Methodologies and Approaches
2. Policies, Standards, Guidelines, and Procedures
3. Types and Classes of Attack
4. Important Technological Trends

This workshop will provide a dive into Digital Forensics essentials, and the necessary knowledge to understand the Digital Forensics process. We will discuss data acquisition and validation methods and techniques, and then cover file systems and structures and how to identify various file types, volatile and non-volatile data, do a live disk and memory forensics demonstration using different tools, and more!