A Visual Summary of SANS HackFest Summit 2023

On November 16-17, attendees joined us in Hollywood, CA or tuned in Live Online for the SANS HackFest Summit!

We invited Ashton Rodenhiser of Mind's Eye Creative to create graphic recordings of our Summit presentations. If you missed a talk or are looking to view the Summit through a visual lens, take a look at the recordings below.

*If you registered for the Summit, video recordings are available on your Summit Access page in your SANS Portal.

Keynote |Security Research: Not Just for Nation States

Valentina Palmiotti, Vulnerability and Exploit Lead, IBM X-Force

https://images.contentstack.io/v3/assets/blt36c2e63521272fdc/blt3f6364ec5101fcd3/655658569f2b99512fbcad3b/01_HackFest_Palmiotti.jpg

The Latest Exploit (BLASTPASS) in the Ongoing NSO Zero-Click/Zero-Day Exploitation Campaign

Christopher Crowley, Senior Instructor

The Invisible Threat: AI-Powered Vishing Attacks and Defense Strategies

Mishaal Khan, vCISO

A Practical Approach to Smart Fuzzing: Discovering 8 Zero-Days in a Week

Ab)using the Microsoft Identity Platform: Exploring Azure AD Token Caching

Ruben Boonen, Senior Managing Security Consultant, IBM Adversary Service

A Hole in the Bucket: The Risk of Public Access to Cloud Native Storage

David Mayer, Instructor Candidate

Unlocking Secrets: An Exploration of PulseView & Side-Channel Timing Attacks

Monta Elkins, Certified Instructor

Proxyjacking: The Latest Cybercriminal Side Hustle

Allen West, Security Researcher - Security Intelligence Response Team (SIRT), Akamai Technologies, Inc.

That Shouldn't Have Worked

Tim Medin, Principal Instructor

Keynote | Hacking the Cloud Like an APT

Lina Lau, Founder of XINTRA, XINTRA

Seek Out New Protocols, and Boldly Hack Undetected

Douglas McKee, SANS Instructor

A Series of Unfortunate Events: A Tail of Hacking Organizations Through Bug Bounties

Ben Sadeghipour, Hacker, NahamSec

Modern Adversarial Reconnaissance - Long Live the External

Jason Haddix, CISO and “Hacker in Charge”, BuddoBot

Just Pocket Change? Examining the Cost of ‘Nickel and Dime’ Exploit Mitigations

Connor McGarr, Software Engineer III, Endpoint Protection (EPP), CrowdStrike

Enhancing Red Teaming with AI and ML

John Rodriguez, Senior Offensive Security Researcher

A Compendium of Exploits and Bypasses for eBPF-based Cloud Security

Austin Gadient,Chief Technology Officer, Vali Cyber

Anti-Deception: Catching the Canaries

Zachary Asher,Lead Cyber Security Engineer, FM Global

If you'd like to check out our other upcoming Summits, you can view the latest listing here.