BSidesSATX 2023

Version 0.22 June 10, 2023

We released a new schedule version!

We had to move some sessions, so if you were planning on seeing them, check their new dates or locations:

• “I Came in Like a Wrecking Ball” by iamv1nc3nt (June 10, 2023, 11 a.m. → June 10, 2023, 10 a.m.)
• “Kickstarting your in-house Red Team: Challenges and approaches” by Daniel C. Marques, Victoria Dea (June 10, 2023, 5 p.m. → June 10, 2023, 4 p.m.)
• “Accidentally Exposed - Classifying Publicly Exposed Cloud Files” by Michael Holburn (June 10, 2023, 5 p.m. → June 10, 2023, 4 p.m.)
• “Trending cloud security threats and defense” by Gabe Schuyler (June 10, 2023, noon → June 10, 2023, 11 a.m.)
• “DefectDojo, Taking your DevSecOps to 11” by Matt Tesauro (June 10, 2023, 4 p.m. → June 10, 2023, 3 p.m.)
• “The Darkside of GraphQL” by Parth Shukla (June 10, 2023, 12:30 p.m. → June 10, 2023, 11:30 a.m.)
• “Writing Effective Triage Notes in the SOC: The Importance of Clarity, Actionability, and Leadership Support” by Abhishek Tripathi (June 10, 2023, 3 p.m. → June 10, 2023, 2 p.m.)
• “Cybersecurity Metrics, KPIs and KRIs” by Gideon T. Rasmussen (June 10, 2023, 5 p.m. → June 10, 2023, 4 p.m.)
• “Challenging the Standard” by Melisa Joyner (June 10, 2023, 11 a.m. → June 10, 2023, 10 a.m.)
• “Cover your SaaS: Cloud threat Detection beyond Endpoints” by Jeremy Galloway (June 10, 2023, 3:30 p.m. → June 10, 2023, 2:30 p.m.)
• “How LockBit Orchestrated the Destruction of a Domain and Network and How We Kicked Them Off Stage” by Jacob Wellnitz (June 10, 2023, 4 p.m. → June 10, 2023, 3 p.m.)
• “How I Learned to Stop Worrying and Build a Modern Detection & Response Program” by Allyn Stott (June 10, 2023, 2 p.m. → June 10, 2023, 1 p.m.)
• “Malware and Malicious Code in the Open Source Software Supply Chain” by Ross Bryant (June 10, 2023, noon → June 10, 2023, 11 a.m.)
• “Use DMARC, do not let others abuse your brand!” by Paul Guido, CISSP, CCSP (June 10, 2023, 5:30 p.m. → June 10, 2023, 4:30 p.m.)
• “Two Sides of the Same Coin: Interview lessons, as learned by both interviewee and interviewer” by Sara Friedfertig (June 10, 2023, 11 a.m. → June 10, 2023, 10 a.m.)
• “Driving Your Own Vulnerability: How to Navigate the Road of BYOD Attacks” by Dana Behling (June 10, 2023, 3 p.m. → June 10, 2023, 2 p.m.)
• “SIEM Slam: Tricking Modern SIEMs with Fake Logs and Confusing Blue Teams (Pre-Recorded)” by Ozgun Kultekin (June 10, 2023, 3 p.m. → June 10, 2023, 2 p.m.)
• “CyberPatriot: Mentoring the Next Generation” by Frank Hall (June 10, 2023, noon → June 10, 2023, 11 a.m.)
• “Discovering the Dark Side: An Introduction to Malware Reverse Engineering” by Andrew Neumann (June 10, 2023, 2 p.m. → June 10, 2023, 1 p.m.)
• “Infrastructure as Remote Code Execution: How to abuse Terraform to elevate access” by Michael McCabe (June 10, 2023, 4 p.m. → June 10, 2023, 3 p.m.)
• “Cybersecurity Careers: How to Find Your Fit” by Frank Buckholdt (June 10, 2023, 1:30 p.m. → June 10, 2023, 12:30 p.m.)
• “SciFi to Reality: Use of AI in Cybersecurity (Pre-Recorded)” by Sandip Dholakia (June 10, 2023, 2 p.m. → June 10, 2023, 1 p.m.)
• “Homophonic Collisions: Hold Me Closer, Tony Danza” by Reagan Short, Justin Ibarra (June 10, 2023, 3:30 p.m. → June 10, 2023, 2:30 p.m.)

Version 0.21 June 10, 2023

We released a new schedule version!

We had to move some sessions, so if you were planning on seeing them, check their new dates or locations:

• “SIEM Slam: Tricking Modern SIEMs with Fake Logs and Confusing Blue Teams (Pre-Recorded)” by Ozgun Kultekin (June 10, 2023, 2 p.m. → June 10, 2023, 3 p.m.)
• “Writing Effective Triage Notes in the SOC: The Importance of Clarity, Actionability, and Leadership Support” by Abhishek Tripathi (June 10, 2023, 2 p.m. → June 10, 2023, 3 p.m.)
• “Infrastructure as Remote Code Execution: How to abuse Terraform to elevate access” by Michael McCabe (June 10, 2023, 3 p.m. → June 10, 2023, 4 p.m.)
• “Malware and Malicious Code in the Open Source Software Supply Chain” by Ross Bryant (June 10, 2023, 11 a.m. → June 10, 2023, noon)
• “Homophonic Collisions: Hold Me Closer, Tony Danza” by Reagan Short, Justin Ibarra (June 10, 2023, 2:30 p.m. → June 10, 2023, 3:30 p.m.)
• “I Came in Like a Wrecking Ball” by iamv1nc3nt (June 10, 2023, 10 a.m. → June 10, 2023, 11 a.m.)
• “Kickstarting your in-house Red Team: Challenges and approaches” by Daniel C. Marques, Victoria Dea (June 10, 2023, 4 p.m. → June 10, 2023, 5 p.m.)
• “Accidentally Exposed - Classifying Publicly Exposed Cloud Files” by Michael Holburn (June 10, 2023, 4 p.m. → June 10, 2023, 5 p.m.)
• “Two Sides of the Same Coin: Interview lessons, as learned by both interviewee and interviewer” by Sara Friedfertig (June 10, 2023, 10 a.m. → June 10, 2023, 11 a.m.)
• “Challenging the Standard” by Melisa Joyner (June 10, 2023, 10 a.m. → June 10, 2023, 11 a.m.)
• “CyberPatriot: Mentoring the Next Generation” by Frank Hall (June 10, 2023, 11 a.m. → June 10, 2023, noon)
• “The Darkside of GraphQL” by Parth Shukla (June 10, 2023, 11:30 a.m. → June 10, 2023, 12:30 p.m.)
• “Cybersecurity Metrics, KPIs and KRIs” by Gideon T. Rasmussen (June 10, 2023, 4 p.m. → June 10, 2023, 5 p.m.)
• “Cover your SaaS: Cloud threat Detection beyond Endpoints” by Jeremy Galloway (June 10, 2023, 2:30 p.m. → June 10, 2023, 3:30 p.m.)
• “How LockBit Orchestrated the Destruction of a Domain and Network and How We Kicked Them Off Stage” by Jacob Wellnitz (June 10, 2023, 3 p.m. → June 10, 2023, 4 p.m.)
• “Discovering the Dark Side: An Introduction to Malware Reverse Engineering” by Andrew Neumann (June 10, 2023, 1 p.m. → June 10, 2023, 2 p.m.)
• “SciFi to Reality: Use of AI in Cybersecurity (Pre-Recorded)” by Sandip Dholakia (June 10, 2023, 12:30 p.m. → June 10, 2023, 2 p.m.)
• “How I Learned to Stop Worrying and Build a Modern Detection & Response Program” by Allyn Stott (June 10, 2023, 1 p.m. → June 10, 2023, 2 p.m.)
• “Cybersecurity Careers: How to Find Your Fit” by Frank Buckholdt (June 10, 2023, 12:30 p.m. → June 10, 2023, 1:30 p.m.)
• “DefectDojo, Taking your DevSecOps to 11” by Matt Tesauro (June 10, 2023, 3 p.m. → June 10, 2023, 4 p.m.)
• “Use DMARC, do not let others abuse your brand!” by Paul Guido, CISSP, CCSP (June 10, 2023, 4:30 p.m. → June 10, 2023, 5:30 p.m.)
• “Trending cloud security threats and defense” by Gabe Schuyler (June 10, 2023, 11 a.m. → June 10, 2023, noon)
• “Driving Your Own Vulnerability: How to Navigate the Road of BYOD Attacks” by Dana Behling (June 10, 2023, 2 p.m. → June 10, 2023, 3 p.m.)

Version 0.20 June 9, 2023

We released a new schedule version!

Version 0.19 June 9, 2023

We released a new schedule version!

We had to move some sessions, so if you were planning on seeing them, check their new dates or locations:

• “I Came in Like a Wrecking Ball” by iamv1nc3nt (June 10, 2023, 11 a.m. → June 10, 2023, 10 a.m.)
• “Kickstarting your in-house Red Team: Challenges and approaches” by Daniel C. Marques, Victoria Dea (June 10, 2023, 5 p.m. → June 10, 2023, 4 p.m.)
• “Accidentally Exposed - Classifying Publicly Exposed Cloud Files” by Michael Holburn (June 10, 2023, 5 p.m. → June 10, 2023, 4 p.m.)
• “Trending cloud security threats and defense” by Gabe Schuyler (June 10, 2023, noon → June 10, 2023, 11 a.m.)
• “DefectDojo, Taking your DevSecOps to 11” by Matt Tesauro (June 10, 2023, 4 p.m. → June 10, 2023, 3 p.m.)
• “The Darkside of GraphQL” by Parth Shukla (June 10, 2023, 12:30 p.m. → June 10, 2023, 11:30 a.m.)
• “Writing Effective Triage Notes in the SOC: The Importance of Clarity, Actionability, and Leadership Support” by Abhishek Tripathi (June 10, 2023, 3 p.m. → June 10, 2023, 2 p.m.)
• “Cybersecurity Metrics, KPIs and KRIs” by Gideon T. Rasmussen (June 10, 2023, 5 p.m. → June 10, 2023, 4 p.m.)
• “Challenging the Standard” by Melisa Joyner (June 10, 2023, 11 a.m. → June 10, 2023, 10 a.m.)
• “Cover your SaaS: Cloud threat Detection beyond Endpoints” by Jeremy Galloway (June 10, 2023, 3:30 p.m. → June 10, 2023, 2:30 p.m.)
• “How LockBit Orchestrated the Destruction of a Domain and Network and How We Kicked Them Off Stage” by Jacob Wellnitz (June 10, 2023, 4 p.m. → June 10, 2023, 3 p.m.)
• “How I Learned to Stop Worrying and Build a Modern Detection & Response Program” by Allyn Stott (June 10, 2023, 2 p.m. → June 10, 2023, 1 p.m.)
• “Malware and Malicious Code in the Open Source Software Supply Chain” by Ross Bryant (June 10, 2023, noon → June 10, 2023, 11 a.m.)
• “Use DMARC, do not let others abuse your brand!” by Paul Guido, CISSP, CCSP (June 10, 2023, 5:30 p.m. → June 10, 2023, 4:30 p.m.)
• “Two Sides of the Same Coin: Interview lessons, as learned by both interviewee and interviewer” by Sara Friedfertig (June 10, 2023, 11 a.m. → June 10, 2023, 10 a.m.)
• “Driving Your Own Vulnerability: How to Navigate the Road of BYOD Attacks” by Dana Behling (June 10, 2023, 3 p.m. → June 10, 2023, 2 p.m.)
• “SIEM Slam: Tricking Modern SIEMs with Fake Logs and Confusing Blue Teams (Pre-Recorded)” by Ozgun Kultekin (June 10, 2023, 3 p.m. → June 10, 2023, 2 p.m.)
• “CyberPatriot: Mentoring the Next Generation” by Frank Hall (June 10, 2023, noon → June 10, 2023, 11 a.m.)
• “Discovering the Dark Side: An Introduction to Malware Reverse Engineering” by Andrew Neumann (June 10, 2023, 2 p.m. → June 10, 2023, 1 p.m.)
• “Infrastructure as Remote Code Execution: How to abuse Terraform to elevate access” by Michael McCabe (June 10, 2023, 4 p.m. → June 10, 2023, 3 p.m.)
• “Cybersecurity Careers: How to Find Your Fit” by Frank Buckholdt (June 10, 2023, 1:30 p.m. → June 10, 2023, 12:30 p.m.)
• “SciFi to Reality: Use of AI in Cybersecurity (Pre-Recorded)” by Sandip Dholakia (June 10, 2023, 2 p.m. → June 10, 2023, 12:30 p.m.)
• “Homophonic Collisions: Hold Me Closer, Tony Danza” by Reagan Short, Justin Ibarra (June 10, 2023, 3:30 p.m. → June 10, 2023, 2:30 p.m.)

Version 0.18 June 9, 2023

We released a new schedule version!

Version 0.17 June 9, 2023

We released a new schedule version!

Version 0.16 June 9, 2023

We released a new schedule version!

Version 0.15 June 9, 2023

We released a new schedule version!

We had to move some sessions, so if you were planning on seeing them, check their new dates or locations:

• “Use DMARC, do not let others abuse your brand!” by Paul Guido, CISSP, CCSP (June 10, 2023, 11:30 a.m. → June 10, 2023, 5:30 p.m.)
• “Two Sides of the Same Coin: Interview lessons, as learned by both interviewee and interviewer” by Sara Friedfertig (June 10, 2023, 5 a.m. → June 10, 2023, 11 a.m.)
• “Driving Your Own Vulnerability: How to Navigate the Road of BYOD Attacks” by Dana Behling (June 10, 2023, 9 a.m. → June 10, 2023, 3 p.m.)
• “SIEM Slam: Tricking Modern SIEMs with Fake Logs and Confusing Blue Teams (Pre-Recorded)” by Ozgun Kultekin (June 10, 2023, 9 a.m. → June 10, 2023, 3 p.m.)
• “CyberPatriot: Mentoring the Next Generation” by Frank Hall (June 10, 2023, 6 a.m. → June 10, 2023, noon)
• “Discovering the Dark Side: An Introduction to Malware Reverse Engineering” by Andrew Neumann (June 10, 2023, 8 a.m. → June 10, 2023, 2 p.m.)
• “Infrastructure as Remote Code Execution: How to abuse Terraform to elevate access” by Michael McCabe (June 10, 2023, 10 a.m. → June 10, 2023, 4 p.m.)
• “DefectDojo, Taking your DevSecOps to 11” by Matt Tesauro (June 10, 2023, 10 a.m. → June 10, 2023, 4 p.m.)
• “Cybersecurity Careers: How to Find Your Fit” by Frank Buckholdt (June 10, 2023, 7:30 a.m. → June 10, 2023, 1:30 p.m.)
• “Homophonic Collisions: Hold Me Closer, Tony Danza” by Reagan Short, Justin Ibarra (June 10, 2023, 9:30 a.m. → June 10, 2023, 3:30 p.m.)
• “SciFi to Reality: Use of AI in Cybersecurity (Pre-Recorded)” by Sandip Dholakia (June 10, 2023, 8 a.m. → June 10, 2023, 2 p.m.)
• “I Came in Like a Wrecking Ball” by iamv1nc3nt (June 10, 2023, 5 a.m. → June 10, 2023, 11 a.m.)
• “Kickstarting your in-house Red Team: Challenges and approaches” by Daniel C. Marques, Victoria Dea (June 10, 2023, 11 a.m. → June 10, 2023, 5 p.m.)
• “Accidentally Exposed - Classifying Publicly Exposed Cloud Files” by Michael Holburn (June 10, 2023, 11 a.m. → June 10, 2023, 5 p.m.)
• “Trending cloud security threats and defense” by Gabe Schuyler (June 10, 2023, 6 a.m. → June 10, 2023, noon)
• “Cybersecurity Metrics, KPIs and KRIs” by Gideon T. Rasmussen (June 10, 2023, 11 a.m. → June 10, 2023, 5 p.m.)
• “Challenging the Standard” by Melisa Joyner (June 10, 2023, 5 a.m. → June 10, 2023, 11 a.m.)
• “Cover your SaaS: Cloud threat Detection beyond Endpoints” by Jeremy Galloway (June 10, 2023, 9:30 a.m. → June 10, 2023, 3:30 p.m.)
• “Writing Effective Triage Notes in the SOC: The Importance of Clarity, Actionability, and Leadership Support” by Abhishek Tripathi (June 10, 2023, 9 a.m. → June 10, 2023, 3 p.m.)
• “The Darkside of GraphQL” by Parth Shukla (June 10, 2023, 6:30 a.m. → June 10, 2023, 12:30 p.m.)
• “How LockBit Orchestrated the Destruction of a Domain and Network and How We Kicked Them Off Stage” by Jacob Wellnitz (June 10, 2023, 10 a.m. → June 10, 2023, 4 p.m.)
• “How I Learned to Stop Worrying and Build a Modern Detection & Response Program” by Allyn Stott (June 10, 2023, 8 a.m. → June 10, 2023, 2 p.m.)
• “Malware and Malicious Code in the Open Source Software Supply Chain” by Ross Bryant (June 10, 2023, 6 a.m. → June 10, 2023, noon)

Version 0.14 June 9, 2023

We released a new schedule version!

Version 0.13 June 4, 2023

We released a new schedule version!

Version 0.12 May 27, 2023

We released a new schedule version!

We sadly had to cancel a session: “Hacking Demos, Dirty Secrets, Dangerous Lies, and Asset Intelligence” by Brian Contos.

We had to move some sessions, so if you were planning on seeing them, check their new dates or locations:

• “The Darkside of GraphQL” by Parth Shukla (June 10, 2023, 9 a.m., Track 2 (Moody Rm 101) → June 10, 2023, 6:30 a.m., Track 1 (UC Conference Rm A))
• “SIEM Slam: Tricking Modern SIEMs with Fake Logs and Confusing Blue Teams (Pre-Recorded)” by Ozgun Kultekin (June 10, 2023, 7 a.m., Track 3 (Moody Rm 102) → June 10, 2023, 9 a.m., Track 2 (Moody Rm 101))

Version 0.11 May 23, 2023

We released a new schedule version!

Version 0.10 May 23, 2023

We released a new schedule version!

Version 0.9 May 23, 2023

We released a new schedule version!

Version 0.8 May 23, 2023

We released a new schedule version!

Version 0.7 May 23, 2023

We released a new schedule version!

Version 0.6 May 23, 2023

We released a new schedule version!

Version 0.5 May 23, 2023

We released a new schedule version!

We have moved a session around: “Cybersecurity Careers: How to Find Your Fit” by Frank Buckholdt (June 10, 2023, 7 a.m. → June 10, 2023, 7:30 a.m.)

Version 0.4 May 23, 2023

We released a new schedule version!

We had to move some sessions, so if you were planning on seeing them, check their new dates or locations:

• “Cybersecurity Metrics, KPIs and KRIs” by Gideon T. Rasmussen (June 10, 2023, 10 a.m., Track 1 (UC Conference Rm A) → June 10, 2023, 11 a.m., Track 3 (Moody Rm 102))
• “The Darkside of GraphQL” by Parth Shukla (June 10, 2023, 6:30 a.m., Track 1 (UC Conference Rm A) → June 10, 2023, 9 a.m., Track 2 (Moody Rm 101))
• “How LockBit Orchestrated the Destruction of a Domain and Network and How We Kicked Them Off Stage” by Jacob Wellnitz (June 10, 2023, 8 a.m. → June 10, 2023, 10 a.m.)
• “Hacking Demos, Dirty Secrets, Dangerous Lies, and Asset Intelligence” by Brian Contos (June 10, 2023, 9 a.m., Track 2 (Moody Rm 101) → June 10, 2023, 6:30 a.m., Track 1 (UC Conference Rm A))
• “SciFi to Reality: Use of AI in Cybersecurity (Pre-Recorded)” by Sandip Dholakia (June 10, 2023, 11 a.m., Track 3 (Moody Rm 102) → June 10, 2023, 8 a.m., Track 1 (UC Conference Rm A))

Version 0.3 May 23, 2023

We released a new schedule version!

Version 0.2 May 22, 2023

We released a new schedule version!

We have a new session: “Use DMARC, do not let others abuse your brand!” by Paul Guido, CISSP, CCSP .

We had to move some sessions, so if you were planning on seeing them, check their new dates or locations:

• “SIEM Slam: Tricking Modern SIEMs with Fake Logs and Confusing Blue Teams (Pre-Recorded)” by Ozgun Kultekin (June 10, 2023, 10 a.m., Track 2 (Moody Rm 101) → June 10, 2023, 7 a.m., Track 3 (Moody Rm 102))
• “DefectDojo, Taking your DevSecOps to 11” by Matt Tesauro (June 10, 2023, 7 a.m., Track 3 (Moody Rm 102) → June 10, 2023, 10 a.m., Track 2 (Moody Rm 101))

Version 0.1 May 12, 2023

We are excited to release our first (tentative) schedule for BSidesSATX 2023!