Forget Enumerating a Network, Hack the SIEM and Win the War

Author(s): John Grigg
Category: Penetration Testing
Duration: 45
Summary: Every company, big and small, is hopping on the SIEM bandwagon. And while they are being sold a solution to help secure their networks the reality is that these systems practice poor security, are generally implemented by people with little to no experience, and create more vulnerabilities than they solve.

In this talk I walk through a common target network where a known and commonly used SIEM has been integrated, show how to exploit onto the SIEM, where to look for the juicy intel, and how to cover your tracks.

Likes: 0