Forget Enumerating a Network, Hack the SIEM and Win the War
Category: Penetration Testing
Summary: Every company, big and small, is hopping on the SIEM bandwagon. And while they are being sold a solution to help secure their networks the reality is that these systems practice poor security, are generally implemented by people with little to no experience, and create more vulnerabilities than they solve.
In this talk I walk through a common target network where a known and commonly used SIEM has been integrated, show how to exploit onto the SIEM, where to look for the juicy intel, and how to cover your tracks.