Wild West Hackin' Fest - Deadwood 2024: Full Schedule

David Fletcher has been working for Black Hills Information Security (BHIS) as a Security Analyst since 2015. He has spent most of his career working for the US Air Force and engaged in a variety of disciplines within the IT industry including boundary defense, web and application... Read More →

Rick Wisser

Rick Wisser has been with the Black Hills Information Security (BHIS) team since 2015. He is a Security Analyst, GIAC Certified Incident Handler (GCIH), and a SANS NetWars Level 5 certificate holder. Rick has an associate degree in Electronic Technology and Computer Networking as... Read More →

Tuesday October 8, 2024 8:30am - 5:00pm MDT
Comfort Inn & Suites Deadwood 225 Cliff St, Deadwood, SD 57732, USA

8:30am MDT

Introduction to Cybersecurity in Space Systems (ICSS): Hardware Edition

Tuesday October 8, 2024 8:30am - 5:00pm MDT

Deadwood Gulch Resort, Trademark Collection by Wyndham

Speakers

Mishaal is a highly respected figure in cybersecurity, with expertise in ethical hacking, Open Source Intelligence (OSINT), social engineering, and privacy. Mishaal's engaging approach involves live demos, making cybersecurity accessible and enjoyable, while his strength lies in rapidly... Read More →

Tuesday October 8, 2024 8:30am - 5:00pm MDT
Deadwood Mountain Grand - Hotel Lobby 3rd Floor 1906 Deadwood Mountain Dr, Deadwood, SD

8:30am MDT

Offense for Defense

Tuesday October 8, 2024 8:30am - 5:00pm MDT

Cadillac Jack's® Gaming Resort - Use SpringHill Suites Entrance

Speakers

Tuesday October 8, 2024 8:30am - 5:00pm MDT

Cadillac Jack's® Gaming Resort - Use SpringHill Suites Entrance

Speakers

Eric Capuano

Antisyphon Training

Eric Capuano is a Director at LimaCharlie, co-founder of Recon InfoSec, and SANS DFIR Instructor. He has over a decade experience in Security Operations, Digital Forensics, and Incident Response.

Whitney Champion

Antisyphon Training

Whitney is the Lead Solutions Architect at LimaCharlie and a co-founder of Recon InfoSec. She has over a decade of experience in security operations and large-scale infrastructure automation and orchestration in both the private and public sector.

Tuesday October 8, 2024 8:30am - 5:00pm MDT
Cadillac Jack's® Gaming Resort - Use SpringHill Suites Entrance 360 Main St, Deadwood, SD 57732, USA

8:00am MDT

Preconference Training Registration

Wednesday October 9, 2024 8:00am - 9:30am MDT

Wade Wells

Wade Wells is a seasoned cybersecurity expert with a robust background in threat hunting, cyber threat intelligence, and detection engineering, primarily in the financial sector. Wade holds a master's degree in cybersecurity from Georgia Tech, is a board member of BSides San Diego... Read More →

Wednesday October 9, 2024 8:30am - 5:00pm MDT
Deadwood Chamber of Commerce 501 Main St, Deadwood, SD

8:30am MDT

Cyber Security Incident Command

Wednesday October 9, 2024 8:30am - 5:00pm MDT

Homestake Adams Research and Cultural Center - Second Floor

Speakers

Gerard Johansen

Antisyphon Training

Wednesday October 9, 2024 8:30am - 5:00pm MDT
Homestake Adams Research and Cultural Center - Second Floor 150 Sherman St, Deadwood, SD 57732, USA

8:30am MDT

Defending the Enterprise

Wednesday October 9, 2024 8:30am - 5:00pm MDT

Intro to IoT Hacking

Wednesday October 9, 2024 8:30am - 5:00pm MDT

Comfort Inn & Suites Deadwood

Speakers

Dave Fletcher

Rick Wisser

Wednesday October 9, 2024 8:30am - 5:00pm MDT
Comfort Inn & Suites Deadwood 225 Cliff St, Deadwood, SD 57732, USA

8:30am MDT

Introduction to Cybersecurity in Space Systems (ICSS): Hardware Edition

Wednesday October 9, 2024 8:30am - 5:00pm MDT

Deadwood Gulch Resort, Trademark Collection by Wyndham

Speakers

Wednesday October 9, 2024 8:30am - 5:00pm MDT
Deadwood Mountain Grand - Hotel Lobby 3rd Floor 1906 Deadwood Mountain Dr, Deadwood, SD

8:30am MDT

Offense for Defense

Wednesday October 9, 2024 8:30am - 5:00pm MDT

Threat Hunting & Incident Response with Velociraptor

Wednesday October 9, 2024 8:30am - 5:00pm MDT

Cadillac Jack's® Gaming Resort - Use SpringHill Suites Entrance

Please use the Springhill Suite entry - Class will be held in the Charleston II (Lower Level)

Speakers

Eric Capuano

Antisyphon Training

Eric Capuano is a Director at LimaCharlie, co-founder of Recon InfoSec, and SANS DFIR Instructor. He has over a decade experience in Security Operations, Digital Forensics, and Incident Response.

Whitney Champion

Antisyphon Training

Wednesday October 9, 2024 8:30am - 5:00pm MDT
Cadillac Jack's® Gaming Resort - Use SpringHill Suites Entrance 360 Main St, Deadwood, SD 57732, USA

11:00am MDT

Airport Con

Wednesday October 9, 2024 11:00am - 4:00pm MDT

Rapid City Airport

The Wild West Hackin’ Fest welcome committee will greet you on Wednesday, Oct. 9th with snacks, bottled waters, coloring books, swag, mini escape room, and lots of smiles. Find them right next to the baggage claim area of the Rapid City Airport. Be sure to check out the shuttle schedule here: https://wildwesthackinfest.com/conference/airport-con/

Speakers

BHIS Staff

Wednesday October 9, 2024 11:00am - 4:00pm MDT
Rapid City Airport

2:00pm MDT

Conference Registration

Wednesday October 9, 2024 2:00pm - 6:00pm MDT

Deadwood Mountain Grand - General Sesson

Speakers

WWHF Staff

Wednesday October 9, 2024 2:00pm - 6:00pm MDT
Deadwood Mountain Grand - General Sesson 1906 Deadwood Mountain Dr, Deadwood, SD

General Session

2:00pm MDT

Spearphish General Store

Wednesday October 9, 2024 2:00pm - 6:00pm MDT

Deadwood Mountain Grand - General Session

Wednesday October 9, 2024 2:00pm - 6:00pm MDT
Deadwood Mountain Grand - General Session 1906 Deadwood Mountain Dr, Deadwood, SD

General Session

5:15pm MDT

Talkin' Bout [infosec] News - Live

Wednesday October 9, 2024 5:15pm - 6:00pm MDT

Deadwood Mountain Grand - General Session

Wednesday October 9, 2024 5:15pm - 6:00pm MDT
Deadwood Mountain Grand - General Session 1906 Deadwood Mountain Dr, Deadwood, SD

General Session, Fun and Games

6:00pm MDT

Sponsor Stampede

Wednesday October 9, 2024 6:00pm - 9:00pm MDT

Various Locations on Main Street

Prepare to join the best little Sponsor Stampede this side of the Mississippi! Prepare to meet your favorite Sponsors as we gather together in Downtown Deadwood for food, drink and little camaraderie.

Wednesday October 9, 2024 6:00pm - 9:00pm MDT
Various Locations on Main Street

Various Locations on Main Street, Fun and Games

8:30pm MDT

Open Mic Night

Wednesday October 9, 2024 8:30pm - 11:00pm MDT

Elks Club

Do you like to sing? Can you tell a joke or two? Perhaps you enjoy playing a musical instrument. Whatever your talent may be, we invite you to join the skilled Rock Stars from BHIS for the Second Annual Open Mic Night.

Wednesday October 9, 2024 8:30pm - 11:00pm MDT
Elks Club

Elks Club - 696 Main St. Deadwood, Fun and Games

7:30am MDT

Conference Registration

Thursday October 10, 2024 7:30am - 6:00pm MDT

Deadwood Mountain Grand - General Session

Speakers

WWHF Staff

Thursday October 10, 2024 7:30am - 6:00pm MDT
Deadwood Mountain Grand - General Session 1906 Deadwood Mountain Dr, Deadwood, SD

General Session

8:00am MDT

Martial Arts Workout

Thursday October 10, 2024 8:00am - 8:45am MDT

Deadwood Mountain Grand - General Session

It's only a matter of time before there's an attempt to steal your briefcase full of case files. Are you prepared?

The WWHF Agent Training Program will cover fundamental self defense techniques. These include: situational awareness, movement, strikes, and escapes from grabs and attacks. More advanced concepts including ground fighting maybe covered on the second day.

Speakers

Cameron Cartier

Security Analyst, Black Hills Information Security

Cameron Cartier joined Black Hills Information Security in 2023 as a Security Analyst. She specializes in web, mobile, and API hacking but likes all new research areas as well. Cameron received a Masters degree in computer science from the University of Utah and she loves to learn... Read More →

Thursday October 10, 2024 8:00am - 8:45am MDT
Deadwood Mountain Grand - General Session 1906 Deadwood Mountain Dr, Deadwood, SD

General Session, Fun and Games

8:45am MDT

Welcome to Wild West Hackin' Fest

Thursday October 10, 2024 8:45am - 9:00am MDT

Aryan is a security researcher with over 3+ years of experience. He’s a full time maldev and loves to evade AV and EDRs. His research interests are not just limited to Windows, but he even develops low level code for *nix systems. Even though his expertise lies in the domain of... Read More →

Chetanya Kunndra

Chetanya Kunndra is a security researcher with over 2+ years of experience. His major area of expertise lies within the domain of pentesting and red teaming. Apart from red teaming, he has a knack for developing automation toolkits. He often dabbles with maldev and reverse engineering... Read More →

Thursday October 10, 2024 10:00am - 10:50am MDT
Deadwood Mountain Grand - Track 3 - Hotel Lobby 3rd Floor 1906 Deadwood Mountain Dr, Deadwood, SD

Track 3 - DMG -Hotel Lobby 3rd Floor, 50 Minute Talk

10:00am MDT

BHIS Content and Community Meetup

Thursday October 10, 2024 10:00am - 12:00pm MDT

Martin Mason Hotel

We would love the opportunity to meet the community. Join Deb, Zach, and Jason from the BHIS and Antisyphon webcasts, and part of the Content & Community team, at Wild West Hackin' Fest. We love getting to meet you. We've talked AT you through the webcasts, now we want to talk WITH you in person. So, if you're available and want to come meet others from Discord, LinkedIn, and all the other places the community gathers, then this is a great opportunity for us to all get to know each other and become friends!

Martin Mason Hotel Ballroom, 33 Deadwood St., Deadwood

Thursday October 10, 2024 10:00am - 12:00pm MDT
Martin Mason Hotel 33 Deadwood St, Deadwood, SD 57732, USA

10:00am MDT

Wrangling Identity in the AWS Cloud with your DevSecOps Lasso

Thursday October 10, 2024 10:00am - 12:00pm MDT

Homestake Adams Research and Cultural Center - Second Floor

One of the most important foundations in cloud is identity and access management. Striking the right balance of velocity, guardrails, and acceptable risk is incredibly challenging. Fortunately it’s easy to close those gaps with open source tooling and cloud provider tools. In this workshop we’ll explore CI/CD workflows, IAM Policy creation, and continuous auditing for the AWS Cloud. Attendees will leave the workshop with a firm understanding of how to integrate AWS with Github actions, AWS Codebuild, Codepipeline, and more. Don’t miss this session with Antisyphon instructor Andrew Krug. Attendees should bring a laptop with any modern Linux virtual machine or MacOS.

Speakers

Andrew Krug

Andrew Krug is a Security Geek specializing in Cloud and Identity and Access Management. Krug brings 15 years experience at the intersection of security, education, and systems administration. As a fierce advocate for Open Source and founder of ThreatResponse tool suite, Andrew has... Read More →

Thursday October 10, 2024 10:00am - 12:00pm MDT
Homestake Adams Research and Cultural Center - Second Floor 150 Sherman St, Deadwood, SD 57732, USA

HARCC - Second Floor, Workshop

10:00am MDT

Practical Soldering

Thursday October 10, 2024 10:00am - 12:00pm MDT

Deadwood Mountain Grand - Track 4 - Backstage

Are you interested in learning how to solder? Well you are in luck! This year Rick Wisser and Dave Fletcher from BHIS have put together a soldering workshop where you can get some hands on experience soldering on a working project. Rick and Dave have had several years of experience related to all types of soldering related to contract manufacturing of printed circuit boards. The goal of the workshop is to get you familiar with soldering and how to avoid common mistakes in solder techniques. Rick and Dave will share proper techniques, tips, and pointers that simplifies the manual soldering process.

Speakers

Dave Fletcher

Deadwood Mountain Grand - Hotel Lobby 3rd Floor

Step into the shoes of a cybersecurity professional in the form of a cyber escape room experience. In this interactive session, you and your team will face a simulated crisis: A cyber attacker, has breached your company's defenses and is stealing sensitive data. Your mission? Work together to uncover the hacker's username and password, track down the stolen files, and identify the type of information that has been compromised.

This scenario challenges participants to think critically and collaborate effectively. A mysterious briefcase, filled with cryptic clues and hidden messages, has been left behind by the attacker. To thwart the hacker's plans, you'll need to decipher the clues, recognize phishing attempts, and classify the compromised data. As you progress, you’ll learn cybersecurity skills, such as creating strong passwords, cryptography basics, phishing email identification, and data classification skills, while racing against the clock to secure your company’s most valuable assets.

Can your team outsmart the hacker and prevent a data breach? Join us in the ProCircular Cyber Escape Room to find out!

Speakers

Brandon Potter

CTO, ProCircular

With over 20 years of experience in Information Technology, including 14 years in cybersecurity, Brandon brings a wealth of knowledge and a dynamic approach to the industry. He excels at forging strong partnerships with clients, understanding their unique business objectives, and... Read More →

Sponsors

Gravwell

Get the best out of your data, even the binary kind. Our built-from-scratch modern solution offers unrestricted data ingest and powerful root cause analysis. Cut through the cybersecurity noise with half the compute power. Ideal for from SOC Analysts to CISOs and even IT heroes who... Read More →

Thursday October 10, 2024 10:00am - 6:15pm MDT
Deadwood Mountain Grand - Hotel Lobby 3rd Floor 1906 Deadwood Mountain Dr, Deadwood, SD

DMG Hotel Lobby 3rd Floor, Fun and Games

11:00am MDT

Digital Doppelgängers: The Dual Faces of Deepfake Technology

Thursday October 10, 2024 11:00am - 11:50am MDT

Deadwood Mountain Grand - Track 1

In society, evolving artificial intelligence leverages cutting-edge technology to create synthetic text, audio, and video clips at a concerning rate. These emerging innovations pose significant threats to organizations' cybersecurity protocols and defenses. This presentation examines the multifaceted nature of deepfakes, offering insights into their creation and detection, what organizations need to do to educate their users, and the technology available to protect against these latest strains of social engineering attacks.

Speakers

James McQuiggan

Security Awareness Advocate, KnowBe4

James McQuiggan has over 20 years of experience in cybersecurity and is currently Security Awareness Advocate for KnowBe4, where he is responsible for amplifying the organization’s messaging related to the importance of, effectiveness of and the need for new-school security awareness... Read More →

Thursday October 10, 2024 11:00am - 11:50am MDT
Deadwood Mountain Grand - Track 1 1906 Deadwood Mountain Dr, Deadwood, SD

Track 1, 50 Minute Talk

11:00am MDT

I didn't waste my life gaming - I learned cyber security

Thursday October 10, 2024 11:00am - 11:50am MDT

Deadwood Mountain Grand - Track 2

This presentation offers an exploration into the origins, innovations, and implications of hacking in the gaming industry. In a virtual world where pixels and code meet human creativity, video games have taken off in popularity within the last 70 years. Beginning with a look at the rudimentary hacks of early classics, we will explore how the earliest video game hacks shaped the future of gaming and cybersecurity. From memory manipulation and code injection using tools like GameShark and Cheat Engine, to the creative exploitation of glitches and zero day discoveries such as Log4Shell, video games have always been a target for manipulation aimed at gaining an unfair advantage. There have been notable video game hacks that have impacted security as a whole, and these could continue to get more severe as more complex technology emerges with the rise of virtual reality. This journey will walk through the evolution and predictions for what video game and virtual reality hacking could mean for the future of security. By examining the intersection of video gaming and security, this can offer insights that are relevant to practitioners, researchers, and gamers alike.

Speakers

Jenna Lawrence

Jenna Lawrence is a Security Engineer at L2 Cyber Solutions based in Denver, Colorado. Most of her day-to-day work is consulting on a government contract with a focus on maintaining security related documentation and managing vulnerabilities in the organization. Previously, she was... Read More →

Samantha Peters

Samantha Peters is an industry professional and Army veteran currently working full time as an enterprise penetration tester. I've always had a natural curiosity and stubbornness which led to a lot of late nights trying to understand why and how video games and their exploits worked... Read More →

Thursday October 10, 2024 11:00am - 11:50am MDT
Deadwood Mountain Grand - Track 2 1906 Deadwood Mountain Dr, Deadwood, SD

Track 2, 50 Minute Talk

11:00am MDT

Designing Active Directory Job Functional Security - One Group for Least Privilege

Thursday October 10, 2024 11:00am - 11:50am MDT

Deadwood Mountain Grand - Hotel Lobby 3rd Floor

Speakers

Kent Ickler

Antisyphon Training

Thursday October 10, 2024 11:00am - 11:50am MDT
Deadwood Mountain Grand - Hotel Lobby 3rd Floor 1906 Deadwood Mountain Dr, Deadwood, SD

Track 3 - DMG -Hotel Lobby 3rd Floor, 50 Minute Talk

12:00pm MDT

Lunch

Thursday October 10, 2024 12:00pm - 1:00pm MDT

Deadwood Mountain Grand - General Session

Thursday October 10, 2024 12:00pm - 1:00pm MDT
Deadwood Mountain Grand - General Session 1906 Deadwood Mountain Dr, Deadwood, SD

General Session, Lunch

12:30pm MDT

Book Signing

Thursday October 10, 2024 12:30pm - 1:00pm MDT

Deadwood Mountain Grand - General Session

Join us for an exclusive book signing with Mishaal Khan, the co-author of “The Phantom CISO”. Meet the author, bring your copy or grab one on-site, and enjoy the chance to chat with him all week long!

Speakers

Mishaal Khan

Thursday October 10, 2024 12:30pm - 1:00pm MDT
Deadwood Mountain Grand - General Session 1906 Deadwood Mountain Dr, Deadwood, SD

General Session

12:30pm MDT

CTF 101 – How to Play and Win

Thursday October 10, 2024 12:30pm - 1:00pm MDT

Deadwood Mountain Grand - Main Stage

Capture the Flag (CTF) competitions offer a great way to acquire new technical skills while having fun and meeting new people. If you have never participated in a CTF event before, it can feel intimidating to try. This quick talk will walk you through the different types of cybersecurity competitions and go over jeopardy-style CTFs. You will learn what skills are needed to participate, how to approach the challenges, and what are some of the common tools you may want to be familiar with. We will go over a few example CTF challenges as a group. We hope that you walk away not only with some new security skills but also the confidence to participate in a CTF on your own.

Speakers

Roman Bohuk

MetaCTF

Roman Bohuk is the co-founder and CEO of MetaCTF, a cybersecurity training company. Since 2014, his team has run over 250 cybersecurity competitions for various universities, Fortune 500 companies, and conferences, including the 2023 International Cybersecurity Challenge and the 2023... Read More →

Thursday October 10, 2024 12:30pm - 1:00pm MDT
Deadwood Mountain Grand - Main Stage 1906 Deadwood Mountain Dr, Deadwood, SD

General Session

1:00pm MDT

Unlocking Physical Security: 3D Printing Your Way Inside

Thursday October 10, 2024 1:00pm - 1:15pm MDT

Deadwood Mountain Grand - Track 4 - Backstage

Every hacker wants more cool stuff and many of us have a 3D printer gathering dust in the corner. In my presentation "Unlocking Physical Security: 3D Printing Your Way Inside." I will inspire the audience to buy more filament and start preheating their print beds to extrude a collection of valuable physical security tools (both offensive and defensive). This talk goes over a handful of original (never before seen) designs, 3D-printable versions of existing tools, explains how to use each tool with demonstration videos, offers practical advice to those who want to 3D print their own physical security tools, and shows the audience where they can find my models and others to print.

Speakers

Noah Pack

Noah Pack is a penetration tester at WebCheck Security with 10+ years of experience in 3D printing and CAD. Noah owns and operates JPID Engineering, a 3D printing and consulting business. He has hundreds of downloads of his CAD models from websites like Printables, Thingiverse, and... Read More →

Thursday October 10, 2024 1:00pm - 1:15pm MDT
Deadwood Mountain Grand - Track 4 - Backstage 1906 Deadwood Mountain Dr, Deadwood, SD

Track 4 - Backstage, 15 Miinute Talks

1:00pm MDT

Gravwell CE for Logs: The Truth Is In There

Thursday October 10, 2024 1:00pm - 1:30pm MDT

Deadwood Mountain Grand - Track 3 - Hotel Lobby 3rd Floor

Whether you're experimenting in your homelab or building "Management Pacification Dashboards" for work, logs are crucial.

Join Gravwell founder Corey Thuen as he uses the Gravwell CE (free 15gb/day for personal OR commercial use) to teach basic log correlation, plus a bit of advanced techniques to show the "art of the possible".

Speakers

Corey Thuen

Gravwell Co Founder & CEO, Gravwell

Corey Thuen co-founded Gravwell to enable log management of every data type an organization might need for success -- analyzing binary packets alongside syslog with a dash of business KPIs enables analytics that improve the entire organization, not just reduce security risk.Prior... Read More →

Thursday October 10, 2024 1:00pm - 1:30pm MDT
Deadwood Mountain Grand - Track 3 - Hotel Lobby 3rd Floor 1906 Deadwood Mountain Dr, Deadwood, SD

Track 3 - DMG -Hotel Lobby 3rd Floor, Tool Shed

1:00pm MDT

EDR Internals for macOS and Linux

Thursday October 10, 2024 1:00pm - 1:50pm MDT

Deadwood Mountain Grand - Track 1

Endpoint Detection and Response (EDR) agents typically comprise multiple sensory components that collect information from various telemetry sources the operating system provides. Many public blogs and conference talks have covered Windows telemetry sources, such as kernel callbacks and ETW, but only some mention macOS and Linux equivalents.

Developers using macOS often have privileged cloud accounts or access to intellectual property such as source code. Linux servers may host customer-facing interfaces or applications that access sensitive databases. Defenders must have confidence in their tools for these systems, and attackers must understand how to evade them.

This talk will detail telemetry sources available to EDR on macOS and Linux and compare them to Windows equivalents. The sources commonly used to monitor process creation, shared library loading, networking, and file activity will be described based on the presenter's observations while reverse engineering popular EDR agents.

Speakers

Kyle Avery

Kyle Avery has been interested in computers for his entire life. Growing up, he and his dad self-hosted game servers and ran their own websites. He focused on offensive security in university and has spent the last few years learning about malware and post-exploitation. Kyle previously... Read More →

Thursday October 10, 2024 1:00pm - 1:50pm MDT
Deadwood Mountain Grand - Track 1 1906 Deadwood Mountain Dr, Deadwood, SD

Track 1, 50 Minute Talk

1:00pm MDT

The Hackening: Lessons learned compromising MSPs!

Thursday October 10, 2024 1:00pm - 1:50pm MDT

Deadwood Mountain Grand - Track 2

The security community often criticizes MSPs, claiming they offer lax security, don't take security seriously, and generally implement weak practices. Some presentations even use "fake" MSP breaches as their foundation.
But what if we actually tested this ourselves?
Join Matt Lee and Jason Slagle as they delve into the data and lessons learned from attempts to breach MSPs. We'll review findings from our efforts to assess and breach a sample of 60 MSPs that volunteered for this study.
Will we succeed? Will we be blocked? What commonalities and weaknesses will we uncover? Join us to discover what we learned.

Speakers

Matt Lee

Matt Lee has dedicated the last 13 years to raising the cyber security tide in the SMB, and MSP markets. His efforts have served in every capacity in a growing MSP that grew to support 20,000 endpoints. His leadership around technology direction, and security/compliance, protected... Read More →

Jason Slagle

Jason Slagle is a many year veteran of systems and network administration. Having worked on everything from Linux systems to Cisco networks and SAN storage, he is always looking for ways to make his work repeatable and automated. Jason has recently taken up a more active interest... Read More →

Thursday October 10, 2024 1:00pm - 1:50pm MDT
Deadwood Mountain Grand - Track 2 1906 Deadwood Mountain Dr, Deadwood, SD

Track 2, 50 Minute Talk

1:00pm MDT

Level Up OSINT

Thursday October 10, 2024 1:00pm - 3:00pm MDT

Homestake Adams Research and Cultural Center - Second Floor

Dive into the dynamic world of Open Source Intelligence (OSINT) with this two-hour workshop designed to give you a tantalizing taste of practical online investigations and threat hunting. Led by a seasoned professional, this immersive session offers a condensed yet impactful introduction to essential OSINT techniques.

Experience the power of hands-on learning as you engage in live demonstrations, exploring key concepts such as operational security (OpSec), search engine queries, username and phone number lookups, social media reconnaissance, breached records analysis, government data exploration, network reconnaissance, historical records, and essential documentation, all within the span of this engaging workshop. Through interactive exercises and guided discussions, participants will gain a glimpse into the world of OSINT.

Join us for this brief yet immersive journey into the realm of online investigations and threat hunting, and take your first step towards mastering the art of OSINT.

Speakers

Mishaal Khan

Thursday October 10, 2024 1:00pm - 3:00pm MDT
Homestake Adams Research and Cultural Center - Second Floor 150 Sherman St, Deadwood, SD 57732, USA

HARCC - Second Floor, Workshop

1:25pm MDT

Mind Over Malware: Harnessing Psychology to Fortify Cybersecurity

Thursday October 10, 2024 1:25pm - 1:40pm MDT

Deadwood Mountain Grand - Track 4 - Backstage

Discover how psychological theories can revolutionize cybersecurity practices! This presentation explores the transformative potential of Attention Restoration Theory (ART) and Social Cognitive Theory (SCT) in enhancing cybersecurity measures. By optimizing work environments to rejuvenate mental focus (ART) and leveraging social influences and self-efficacy to boost security compliance (SCT), let's shed light on strategies that minimize human errors and amplify vigilance. Dive into a session that blends theory with practical solutions, paving the way for a cybersecurity culture that's as robust as user-centric. Get ready to shift from traditional defenses to psychologically empowered cybersecurity tactics!

Speakers

Jenn Ferreras

Jenn, a Malware Threat Hunter who mistakenly took a turn into cybersecurity while chasing a particularly deceptive flamingo image on Twitter. Now deep in the throes of a cybersecurity Ph.D., Jenn explores the peculiar quirks of human behavior in the digital security realm.Before cybersecurity... Read More →

Thursday October 10, 2024 1:25pm - 1:40pm MDT
Deadwood Mountain Grand - Track 4 - Backstage 1906 Deadwood Mountain Dr, Deadwood, SD

Track 4 - Backstage, 15 Miinute Talks

1:40pm MDT

Jargon

Thursday October 10, 2024 1:40pm - 2:10pm MDT

Deadwood Mountain Grand - Track 3 - Hotel Lobby 3rd Floor

Jargon is a shellcode obfuscation method that substitutes dictionary words in place of shellcode bytes and uses each word's position in a dictionary array to resolve the shellcode bytes at runtime. This provides two benefits - your loader doesn't have any shellcode, and the use of dictionary words reduces the entropy of your loader, sidestepping entropy detections built into some AV & EDR. We've found Jargon to be highly effective in evading detection.

Speakers

Mike Saunders

Principal Consultant, Red Siege

Jaclyn "Jax" Scott is a distinguished leader within the cybersecurity sector, bringing together nearly 16 years of in-depth experience both from the military and civilian sectors spanning IT and cybersecurity. A key highlight of her career includes critical strategic support to global... Read More →

Thursday October 10, 2024 2:00pm - 2:50pm MDT
Deadwood Mountain Grand - Track 2 1906 Deadwood Mountain Dr, Deadwood, SD

Track 2, 50 Minute Talk

2:00pm MDT

SOC Meet and Greet

Thursday October 10, 2024 2:00pm - 4:00pm MDT

Martin Mason Hotel

**Join Us for the SOC Meet and Greet!**

Ever wondered what it takes to run a successful Security Operations Center (SOC) program? Are you interested in learning how to effectively protect organizations from evolving threats?

Don’t miss the opportunity to connect with experts in the field at our inaugural SOC Meet and Greet! This event is designed for professionals at all levels who want to deepen their understanding of SOC operations and enhance their skills.

Thursday 2 p.m. to 4 p.m. - Martin Mason Ballroom, 33 Deadwood Street, Deadwood

Thursday October 10, 2024 2:00pm - 4:00pm MDT
Martin Mason Hotel 33 Deadwood St, Deadwood, SD 57732, USA

2:15pm MDT

Evil Twin Attack Without WiFi Pineapple

Thursday October 10, 2024 2:15pm - 2:30pm MDT

Deadwood Mountain Grand - Track 4 - Backstage

The goal of the presentation is to showcase how to perform the Evil Twin Attack exploit without the use of a Wifi pineapple as well as to showcase how to bypass randomization of wireless channels on wireless access points

Speakers

Roy Bull

Self-Taught Cyber Security Professional with a background in Software Engineering, IT Technical Support, Security Engineering, and proficiency in Electrical engineering and Reverse Engineering.

Thursday October 10, 2024 2:15pm - 2:30pm MDT
Deadwood Mountain Grand - Track 4 - Backstage 1906 Deadwood Mountain Dr, Deadwood, SD

Track 4 - Backstage, 15 Miinute Talks

2:20pm MDT

Warhorse

Thursday October 10, 2024 2:20pm - 2:50pm MDT

Deadwood Mountain Grand - Track 3 - Hotel Lobby 3rd Floor

Attack Automation Framework. Existing tool but major rewrite.

Speakers

Ralph May

Ralph is a security analyst and penetration tester at Black Hills Information Security. Ralph is also a co-developer and instructor of the Practical Physical Exploitation course. Before joining BHIS, Ralph spent five years performing offensive operations on a wide range of security... Read More →

Thursday October 10, 2024 2:20pm - 2:50pm MDT
Deadwood Mountain Grand - Track 3 - Hotel Lobby 3rd Floor 1906 Deadwood Mountain Dr, Deadwood, SD

Track 3 - DMG -Hotel Lobby 3rd Floor, Tool Shed

2:40pm MDT

Beyond Blacklists: Security in the Age of AI

A Post-Incident Case Study for SMB Response Teams

Thursday October 10, 2024 3:00pm - 3:50pm MDT

Deadwood Mountain Grand - Track 2

This presentation will delve into a real-world cybersecurity incident involving a masked application attack on an SMB environment. Using an anonymized incident narrative, we'll walk through the response process from the perspective of a small to medium-sized business team. The presentation will highlight the importance of early detection, the challenges of identifying sophisticated threats, and the critical role of proper incident response procedures.

We'll examine the attack timeline, from the initial malware download disguised as legitimate software to the attacker's lateral movement and attempts at data exfiltration. Key focus areas will include the significance of user awareness, the value of multi-layered security controls, and the effectiveness of SIEM and endpoint detection solutions in identifying suspicious activities.

The presentation will also cover practical lessons learned, including the importance of least privilege principles, robust password policies, and regular security testing. We'll discuss how SMBs can improve their security posture by implementing these lessons and leveraging available tools and best practices.
By analyzing this incident, attendees will gain valuable insights into real-world attack techniques, effective response strategies, and proactive measures to enhance their organization's cybersecurity resilience. The session will conclude with actionable takeaways for SMBs to better prepare for and respond to similar threats in their own environments.

Speakers

Amanda Berlin

(@infosystir) Amanda Berlin is a Lead Incident Detection Engineer for Blumira and the CEO and owner of the nonprofit corporation Mental Health Hackers. She is the author for a Blue Team best practices book called Defensive Security Handbook: Best Practices for Securing Infrastructure... Read More →

Thursday October 10, 2024 3:00pm - 3:50pm MDT
Deadwood Mountain Grand - Track 2 1906 Deadwood Mountain Dr, Deadwood, SD

Track 2, 50 Minute Talk

3:05pm MDT

Tow Away Zone: The Dark-Side of Domain Parking

Thursday October 10, 2024 3:05pm - 3:20pm MDT

Deadwood Mountain Grand - Track 4 - Backstage

Companies or individuals often sit on domains for later use, and can even make a “passive income" off of these unused domains. The monetary incentives of the domain parking system lead to these parked domains becoming littered with malware and potentially putting consumers in danger. This talk is essentially a PSA, and gives an overview of the phenomenon including stakeholder analysis, perverse incentives, and why you might want to reconsider parking your domains.

Speakers

Cameron Cartier

Security Analyst, Black Hills Information Security

Thursday October 10, 2024 3:05pm - 3:20pm MDT
Deadwood Mountain Grand - Track 4 - Backstage 1906 Deadwood Mountain Dr, Deadwood, SD

Track 4 - Backstage, 15 Miinute Talks

3:15pm MDT

A Hacker's Guide to Mindfulness

Thursday October 10, 2024 3:15pm - 5:15pm MDT

Homestake Adams Research and Cultural Center - Second Floor

"A Hacker's Guide to Mindfulness" aims to explore the intersection of mindfulness practices and the hacker mindset. Hacker’s are already uniquely trained to question assumptions and just “see what happens”; this is the core curiosity needed to unlock the cheat codes in life via various mindfulness practices.

This workshop will give attendees an introduction to a large amount of mindfulness practices relating them to things most of us do every day in our infosec jobs. We won't just talk about these techniques, we will go through these exercises so the attendees can do them at least once together and have a solid starting point to expand their practice after the workshop.

Workshop topics:
* Core Programming: Understanding how our beliefs were programmed into us at an early age and what we can and should do about that.
* Limiting Beliefs: Identifying and overcoming limiting beliefs that hinder personal and professional growth.
* Brules (Bullshit Rules): Examining and challenging societal and industry norms that may be limiting or outdated.
* Meditation: Exploring different meditation practices and their benefits for mental clarity, stress reduction, and improved focus.
* Breathwork: Techniques for using breathwork to manage stress, increase energy levels, and enhance mindfulness.
* Burnout: Strategies for preventing and recovering from burnout in the fast-paced world of hacking and programming.
* Distraction: Techniques for minimizing distractions and increasing productivity in coding and problem-solving tasks.
* Life Purpose: exploring who am I?, where am I going? and a different approach to goal setting
* Spiritual DevOps: Applying principles of DevOps to spiritual growth, including continuous improvement and collaboration.

Speakers

Chris Gates

Thursday October 10, 2024 3:15pm - 5:15pm MDT
Homestake Adams Research and Cultural Center - Second Floor 150 Sherman St, Deadwood, SD 57732, USA

HARCC - Second Floor, Workshop

3:30pm MDT

Lessions Learned in a Year of Social Engineering

Thursday October 10, 2024 3:30pm - 3:45pm MDT

Deadwood Mountain Grand - Track 4 - Backstage

Many organizations current policies and controls allow for their helpdesks to reset users passwords and multi-factor authentication, which makes those helpdesks a prime target for social engineering attacks such as those demonstrated in the past by threat actors like the ALPHV/BlackCat ransomware groups. This talk will cover common tactics successfully used by threat actors, and emulated by BHIS's ANTISOC team, as well as policies and procedures that can help deter such attacks.

Speakers

Alice Thorne

Alice is a security analyst on the ANTISOC team for Black Hills Information Security, where she has found success and enjoyment in social engineering.Prior to working at Black Hills Information Security, Alice did stuff and things, where she made memories and had experiences.Outside... Read More →

Thursday October 10, 2024 3:30pm - 3:45pm MDT
Deadwood Mountain Grand - Track 4 - Backstage 1906 Deadwood Mountain Dr, Deadwood, SD

Track 4 - Backstage, 15 Miinute Talks

3:40pm MDT

Adam and Eve

Thursday October 10, 2024 3:40pm - 4:10pm MDT

Deadwood Mountain Grand - Track 3 - Hotel Lobby 3rd Floor

Adam and Eve is a Remote Access Tool, socket (and HTTP) server used to interact with Active Directory Environments across the Internet via a Flask API. It is modular so custom commands, as well as custom scripts can be uploaded and invoked on a client machine in real time.

Speakers

Darryl Baker

Darryl G. Baker, CISSP, CEH is a cybersecurity consultant for Trimarc, LLC and is a "Swiss Army Knife" of technology. After serving in the U.S. Army for 10 years, he shifted his focus primarily to technology and cybersecurity. He has published multiple whitepapers, as well as webcasts... Read More →

Thursday October 10, 2024 3:40pm - 4:10pm MDT
Deadwood Mountain Grand - Track 3 - Hotel Lobby 3rd Floor 1906 Deadwood Mountain Dr, Deadwood, SD

Track 3 - DMG -Hotel Lobby 3rd Floor, Tool Shed

3:55pm MDT

Getting Started in Entra ID Security

Thursday October 10, 2024 3:55pm - 4:10pm MDT

Deadwood Mountain Grand - Track 4 - Backstage

Speakers

Jonathan Rogers

Jonathan Rogers is a lifelong nerd with a never ending curiosity and a passion to know how things work. He loves helping others learn more about cybersecurity and helping them secure their companies. He's the father to an amazing wife and awesome son. As his day job he works as a... Read More →

Thursday October 10, 2024 3:55pm - 4:10pm MDT
Deadwood Mountain Grand - Track 4 - Backstage 1906 Deadwood Mountain Dr, Deadwood, SD

Track 4 - Backstage, 15 Miinute Talks

4:00pm MDT

The Art of Lurking: Effective C2 Channels

Thursday October 10, 2024 4:00pm - 4:50pm MDT

Deadwood Mountain Grand - Track 1

Lurking means to wait or move in a secret way so that you cannot be seen. On a red team or assumed breach operation, our success hinges on how our implants communicate with us. The way these communications happen - how fast, how often, and how much data is exchanged - is key to realistically mimicking cyber attackers. In this talk, I'll break down the essentials of choosing a Command and Control (C2) channel and share some clever tactics and commonly used services that help us stay under the radar and gain the upper hand in our target's environment. Get ready for a behind-the-scenes look at the stealthy side of cybersecurity.

Speakers

Corey Overstreet

Senior Security Consultant, Red Siege

Corey has been engaged with Fortune 500 organizations across a variety of industries, including financial services, government services, and healthcare and is widely recognized for his in-depth OSINT talks and workshops. Additionally, he is a Black Hat trainer and has spoken at conferences... Read More →

Thursday October 10, 2024 4:00pm - 4:50pm MDT
Deadwood Mountain Grand - Track 1 1906 Deadwood Mountain Dr, Deadwood, SD

Track 1, 50 Minute Talk

4:00pm MDT

Critical Infrastructure in Critical Condition: Avoiding Doubt in the Face of Fear and Uncertainty

Thursday October 10, 2024 4:00pm - 4:50pm MDT

Deadwood Mountain Grand - Track 2

As a “person of a certain age, with certain experiences”, I can attest that life is fraught with uncertainty. Society is increasingly dependent on undependable technology. (This is, after all, why we all have jobs.) Whether from extreme weather, hostile events, squirrels with poor judgment, or from the random chaos of normal life, disruptions seem increasingly frequent. Incidents are also likely to be more complex, with more chaotic effects. Without electricity for power, communications can be disrupted. Without water, medical care becomes virtually impossible very quickly. The potential effects have gone beyond inconvenient to existential.

Adding fear to uncertainty, China has announced its intention to annex Taiwan by 2027. US cybersecurity leadership has testified that a Chinese hacking group known as Volt Typhoon has been conducting campaigns to pre-position malware in US water infrastructure. The goal of these campaigns is to create a credible threat (disruption of the water supply, with predictable consequences) to the US in support of its annexation of Taiwan.

As civic-minded members of the cybersecurity community, how can we respond to these threats in ways that will avoid encouraging doubt and will inspire confidence in the communities and neighborhoods in which we live? I hope that you will leave this talk better informed, and inspired to do at least one thing in your neighborhood and community that will influence others to do the same

Speakers

Ray Davidson

Ray Davidson recently retired from leading the Michigan Cyber Civilian Corps, which was the first state-sponsored team of civilian incident responders in the country. He is currently working to expand the practice of cyber civil defense across the country, with particular attention... Read More →

Thursday October 10, 2024 4:00pm - 4:50pm MDT
Deadwood Mountain Grand - Track 2 1906 Deadwood Mountain Dr, Deadwood, SD

Track 3 - DMG -Hotel Lobby 3rd Floor, 50 Minute Talk

4:20pm MDT

Still living with AD(H)D in Infosec

Thursday October 10, 2024 4:20pm - 4:45pm MDT

Deadwood Mountain Grand - Track 4 - Backstage

I’ve been in Infosec for almost 20 years. I also have AD(H)D. This talk is my story; how I kept feeling something was off until diagnosed 5 years ago, what impact ADHD and being diagnosed had on my life and why one should always confront realities and get the best out of it.I'll also talk about what I learned since last year and the talk I did at WWHF 2023 and about which advantages me and others with a similar diagnose has that makes them unique and helped them accomplish great things in life.An important learning for me since I started talking about neurodiversity is that there is an overrepresentation of mental diagnoses in infosec. This is my attempt to educate, break down taboos and inspire others to learn about themselves and others and hopefully get a better life.

Speakers

Klaus Agnoletti

Klaus Agnoletti has been an all-round infosec professional since 2004. As a long-time active member of the infosec community in Copenhagen, Denmark, he co-founded BSides København in 2019. Currently he's a freelance storytelling cyber security advisor specializing in security transformation... Read More →

Thursday October 10, 2024 4:20pm - 4:45pm MDT
Deadwood Mountain Grand - Track 4 - Backstage 1906 Deadwood Mountain Dr, Deadwood, SD

Track 4 - Backstage, 15 Miinute Talks

Counter-Terrorism with Strings

Thursday October 10, 2024 5:00pm - 5:50pm MDT

Deadwood Mountain Grand - Track 2

Several real-world case studies will be presented in which analysis of network-based evidence was sufficiently done with nothing more sophisticated than 'strings'.

Speakers

Jonathan Ham

Jonathan Ham is an anthropologist who was academically kidnapped in 1992 and forced into cybersecurity by well-meaning college friends. He was made to learn TCP/IP at the bit-level of protocol structures, and to learn to fight evil at all 7 layers of the OSI model. From the ashes... Read More →

Thursday October 10, 2024 5:00pm - 5:50pm MDT
Deadwood Mountain Grand - Track 2 1906 Deadwood Mountain Dr, Deadwood, SD

Track 2, 50 Minute Talk

6:00pm MDT

Chuckwagon Steak Dinner

Thursday October 10, 2024 6:00pm - 8:00pm MDT

Deadwood Mountain Grand - General Session

Your dinner is prepared by the renowned chuck wagon cooking duo, Clayton and Rhonda Sanders.
Steak- Locally grown ball tip sirloin beef steak
Sides- Clayton’s secret recipe; slow-cooked baked beans. Dutch oven sides include fresh sliced fire-fried potatoes with bacon, onion, bell peppers, and seasonings.

Thursday October 10, 2024 6:00pm - 8:00pm MDT
Deadwood Mountain Grand - General Session 1906 Deadwood Mountain Dr, Deadwood, SD

General Session, Dinner

6:15pm MDT

Trivia

Thursday October 10, 2024 6:15pm - 6:45pm MDT

Deadwood Mountain Grand - General Session

Speakers

The Traveler

Thursday October 10, 2024 6:15pm - 6:45pm MDT
Deadwood Mountain Grand - General Session 1906 Deadwood Mountain Dr, Deadwood, SD

General Session, Fun and Games

7:00pm MDT

A Knight of Chess

Thursday October 10, 2024 7:00pm - 9:00pm MDT

Deadwood Mountain Grand - Track 4 - Backstage

Thursday October 10, 2024 7:00pm - 9:00pm MDT
Deadwood Mountain Grand - Track 4 - Backstage 1906 Deadwood Mountain Dr, Deadwood, SD

Track 4 - Backstage, Fun and Games

7:00pm MDT

Old Time Photos

Thursday October 10, 2024 7:00pm - 10:00pm MDT

Deadwood Mountain Grand - Track 2

Thursday October 10, 2024 7:00pm - 10:00pm MDT
Deadwood Mountain Grand - Track 2 1906 Deadwood Mountain Dr, Deadwood, SD

Track 2, Fun and Games

7:30pm MDT

Calf Roping and Stick Horse Rodeo

Thursday October 10, 2024 7:30pm - 9:30pm MDT

Deadwood Mountain Grand - General Session

Don't miss the opportunity to learn from, compete with and chew the fat with Wild West Hackin' Fest very own Cowboy! Cowboy Carl (aka: John's uncle) will teach you the best techniques for calf roping.

While you are at it, bring you best barrel racing move and compete in the first annual WWHF Stick Rodeo.

These events are sure to keep you grinning!

Speakers

Cowboy Carl

Join us for an unforgettable experience with Cowboy Carl at the Wild West Hackin' Fest! Hailing from the ranches of Northern South Dakota, Carl brings his authentic cowboy charm and humor to the event. Whether he's sharing tales from the trail or offering insights from his daily ranch... Read More →

Security Analyst, Black Hills Information Security

Friday October 11, 2024 8:00am - 8:45am MDT
Deadwood Mountain Grand - General Session 1906 Deadwood Mountain Dr, Deadwood, SD

General Session, Fun and Games

8:45am MDT

Updates and Announcements

Friday October 11, 2024 8:45am - 9:00am MDT

Deadwood Mountain Grand - General Session

Speakers

WWHF Staff

Friday October 11, 2024 8:45am - 9:00am MDT
Deadwood Mountain Grand - General Session 1906 Deadwood Mountain Dr, Deadwood, SD

General Session

9:00am MDT

Hiding in Plain Sight - Shellcode Obfuscation Techniques

Friday October 11, 2024 9:00am - 9:50am MDT

Deadwood Mountain Grand - Track 1

It doesn’t matter how advanced your shellcode loader is, if you don’t protect your shellcode from prying AV & EDR sensors, you’re going to have a bad time. From simple encryption schemes like the Caesar cipher to more complex schemes like AES, reversing arrays, steganography, encoding shellcode as other data types, and other techniques, this talk will cover a variety of ways to hide shellcode in your loader. I’ll demonstrate how these techniques score against many engines using VirusTotal. In some cases, AV engines will detect the decoding routine. I’ll also discuss techniques you can use to break this detection. I will also be sharing a repository demonstrating the different evasion techniques discussed in this talk. Note – this talk will not cover behavioral evasion techniques like unhooking, direct and indirect syscalls, or other evasion techniques. Whether you’re new to obfuscating shellcode or an experienced pro, there’s something in this talk for you!

Speakers

Mike Saunders

Principal Consultant, Red Siege

Friday October 11, 2024 9:00am - 9:50am MDT
Deadwood Mountain Grand - Track 1 1906 Deadwood Mountain Dr, Deadwood, SD

Track 1, 50 Minute Talk

9:00am MDT

GeoINT Mastery: A pixel is worth a thousand words

Friday October 11, 2024 9:00am - 9:50am MDT

Deadwood Mountain Grand - Track 2

After this talk, you will never see images the same way again. This enlightening session explores the dynamic realm of GeoINT (Geospatial Intelligence), a captivating subset of OSINT (Open Source Intelligence) that unlocks a wealth of hidden insights within images and videos. From identifying objects, landscapes, and aircrafts to interpreting symbols, shadows, and reflections, we'll go deep into the art of imagery analysis. Learn how to decode the language of trees, signs, text and logos, and uncover the strategic implications behind seemingly mundane details. This talk promises to give you a taste of some next level skills that you can easily learn as I take you through multiple demos.

Speakers

Mishaal Khan

Friday October 11, 2024 9:00am - 9:50am MDT
Deadwood Mountain Grand - Track 2 1906 Deadwood Mountain Dr, Deadwood, SD

Track 2, 50 Minute Talk

9:00am MDT

Demystifying Deep Fakes

Friday October 11, 2024 9:00am - 9:50am MDT

Deadwood Mountain Grand - Track 3 - Hotel Lobby 3rd Floor

One area of increasing concern is the use of AI to create deep fakes in order to manipulate the public’s opinion on topics. In this talk, we will learn how AI is used to create deep fakes. We will also discuss current strategies that attendees can use to spot deep fakes and describe existing research and tools used for deep fake detection. After the talk, attendees will have a better understanding of deep fake technology and be armed with some techniques they can use to protect themselves.

Speakers

Anmol Agarwal

Dr. Anmol Agarwal is a senior security researcher focused on securing 5G and 6G. Her research interests include AI and Machine Learning security. She is also a part-time adjunct professor teaching Machine Learning to doctoral students. She holds a doctoral degree in cybersecurity... Read More →

Friday October 11, 2024 9:00am - 9:50am MDT
Deadwood Mountain Grand - Track 3 - Hotel Lobby 3rd Floor 1906 Deadwood Mountain Dr, Deadwood, SD

Track 3 - DMG -Hotel Lobby 3rd Floor, 50 Minute Talk

9:00am MDT

Friday October 11, 2024 10:00am - 10:50am MDT

Deadwood Mountain Grand - Track 1

In my first career, I spent 35 years at the National Security Agency as a Vulnerability Analyst for the defense, from junior analyst to executive manager. I also had the honor of helping found and lead two of the Nation’s largest organizations dedicated to this mission – the Systems and Network Attack Center, and the Vulnerability Analysis and Operational Group. At NSA, Vulnerability Analysis for defense was a “full spectrum” activity, designed to emulate the resources of a nation-state adversary and their ability to operate at scale. In this talk, I’ll offer a historical and personal perspective how this field of analysis evolved from a focus on mathematics and cryptography, through systems and software, and then to “live” operational systems. And what’s it like to spend a career as a cyberdefender for the DoD and the nation, but homed inside of an intelligence agency? We’ll discuss the mission, technical, and cultural interplay of cyberdefense and offense/intelligence as it played out at NSA. War stories, culture clashes, bureaucratic mazes? Of course! But in the end, better security for all.

Speakers

Tony Sager

Tony is currently Senior VP & Chief Evangelist for the Center for Internet Security (CIS), leading a wide variety of strategic, partnership, and outreach activities. He led the work which later became known as the CIS Critical Security Controls – an independent, volunteer-developed... Read More →

Friday October 11, 2024 10:00am - 10:50am MDT
Deadwood Mountain Grand - Track 1 1906 Deadwood Mountain Dr, Deadwood, SD

Track 1, 50 Minute Talk

10:00am MDT

Epic Fails and Heist Tales: Red Teaming Toward Truly Tested Security

Friday October 11, 2024 10:00am - 10:50am MDT

Deadwood Mountain Grand - Track 2

Alethe takes audiences on a riveting journey into the realm of red teaming through captivating narratives and insightful analysis. Delving into real-life experiences, the keynote unveils the complexities and nuances of red team engagements, showcasing both the spectacular failures, and successful heists that provide invaluable lessons for enhancing organizational security. From epic missteps to meticulously planned operations, attendees will gain a deeper understanding of the pivotal role red teaming plays in fortifying defenses against emerging threats. Through engaging storytelling and practical insights, this presentation offers a compelling exploration of red teaming's transformative impact on shaping the security landscape of tomorrow.

Speakers

Alethe Denis

Senior Security Consultant, Bishop Fox

Alethe Denis is a Senior Security Consultant on the Red Team at Bishop Fox, who has advised and developed solutions and strategies that have driven improvement of global security programs. Her work has helped businesses unlock opportunities to enhance security awareness as well as... Read More →

Friday October 11, 2024 10:00am - 10:50am MDT
Deadwood Mountain Grand - Track 2 1906 Deadwood Mountain Dr, Deadwood, SD

Track 2, 50 Minute Talk

10:00am MDT

Making the Jump: Everything You Need to Know About Moving into a Cybersecurity Leadership Role

Friday October 11, 2024 10:00am - 10:50am MDT

Deadwood Mountain Grand - Track 3 - Hotel Lobby 3rd Floor

Does this describe you?

You have years of technical work experience under your belt. You’ve held many different roles and have worked successfully with other teams and departments. You’re great at what you do.

But you also have a spark in you – the one that lights up when you're mentoring new team members or brainstorming solutions with your peers. You have no problem dealing with difficult people and situations. You love a good challenge that requires multiple teams to solve, and people genuinely like working with you.

And you’ve been thinking lately: Should I make the move over to leadership?

Leadership means more responsibility, potentially less hands-on technical work, and maybe even some office politics. But it also means having a bigger voice, the chance to build a team and mentor others, and more opportunities for your career. Staying in your current role means mastering your craft, having more autonomy, and avoiding some of the headaches of management, but it might also mean hitting a ceiling in terms of influence or earning potential.
So, which path is right for YOU? It all boils down to what gets you fired up, what kind of impact you want to make, and where you'll be happiest.
In this talk, you’ll hear all about the good, the bad, and the ugly about being in cybersecurity leadership. You’ll learn about what it takes to succeed as a leader on technical teams. You’ll also learn about some tried-and-true ways of breaking into management roles. Whether you're itching for a change or just curious about your options, this talk will give you the information you need so you can choose your own path.

Speakers

Naomi Buckwalter

Naomi Buckwalter, CISSP CISM, is the Senior Director of Product Security for Contrast Security and author of the LinkedIn course: “Training today for tomorrow's solutions - Building the Next Generation of Cybersecurity Professionals”. She is the founder and Executive Director... Read More →

Friday October 11, 2024 10:00am - 10:50am MDT
Deadwood Mountain Grand - Track 3 - Hotel Lobby 3rd Floor 1906 Deadwood Mountain Dr, Deadwood, SD

Track 3 - DMG -Hotel Lobby 3rd Floor, 50 Minute Talk

10:00am MDT

BYOS: Bring Your Own Satellite

Friday October 11, 2024 10:00am - 12:00pm MDT

Homestake Adams Research and Cultural Center - Second Floor

Speakers

Tim Fowler

Friday October 11, 2024 10:00am - 12:00pm MDT
Homestake Adams Research and Cultural Center - Second Floor 150 Sherman St, Deadwood, SD 57732, USA

HARCC - Second Floor, Workshop

10:00am MDT

Practical Soldering

Friday October 11, 2024 10:00am - 12:00pm MDT

Deadwood Mountain Grand - Track 4 - Backstage

Speakers

Chloé Messdaghi

CEO & Founder, SustainCyber

Chloé Messdaghi is a cybersecurity leader dedicated to building strong relationships that drive the development of security standards and policies. She spearheads initiatives to strengthen AI security measures and fosters collaborative efforts to enhance industry-wide practices... Read More →

Friday October 11, 2024 11:00am - 11:50am MDT
Deadwood Mountain Grand - Track 3 - Hotel Lobby 3rd Floor 1906 Deadwood Mountain Dr, Deadwood, SD

Track 3 - DMG -Hotel Lobby 3rd Floor, 50 Minute Talk

12:00pm MDT

Lunch

Friday October 11, 2024 12:00pm - 1:00pm MDT

Deadwood Mountain Grand - General Session

Friday October 11, 2024 12:00pm - 1:00pm MDT
Deadwood Mountain Grand - General Session 1906 Deadwood Mountain Dr, Deadwood, SD

General Session, Lunch

1:00pm MDT

Jigsaw

Friday October 11, 2024 1:00pm - 1:30pm MDT

Deadwood Mountain Grand - Track 3 - Hotel Lobby 3rd Floor

Jigsaw is a shellcode obfuscation routine designed to hide your shellcode without requiring the use of encryption routines. Jigsaw works by generating an array (positions[]) the size of your shellcode and populates the array with random numbers, each representing a unique position in the original shellcode array. Jigsaw then creates a new shellcode array, jigsaw[], by iterating through the array of randomized positions. If first entry of the randomized positions array (positions[0]) is 100, then Jigsaw selects the byte at shellcode[100] and inserts it into jigsaw[0]. Jigsaw repeats this process until all shellcode bytes have been populated to the jigsaw[] array. While this tool is new, our testing indicates very few AV/EDR are aware of this technique. As a result, this technique could be an effective part of your shellcode loader arsenal.

Speakers

Mike Saunders

Principal Consultant, Red Siege

Friday October 11, 2024 1:00pm - 1:30pm MDT
Deadwood Mountain Grand - Track 3 - Hotel Lobby 3rd Floor 1906 Deadwood Mountain Dr, Deadwood, SD

Track 3 - DMG -Hotel Lobby 3rd Floor, Tool Shed

1:00pm MDT

All on Red: Shifting the Betting Odds to Defense

Friday October 11, 2024 1:00pm - 1:50pm MDT

Deadwood Mountain Grand - Track 1

You often hear the term, it only takes an adversary one main find to compromise an entire organization. The odds don't seem to be in our favor when it comes to defense. This talk will dive into effective methods to flip the odds into your own favor and things you can do quickly that doesn't take a three year strategic roadmap for. We'll be getting into some techniques you can leverage in deception and detection as well as methods that I've seen stop our red teams in the past. If I were a betting man, my bet is on defense.

Speakers

David Kennedy

TrustedSec & Binary Defense Systems

David Kennedy, is the founder of Binary Defense and TrustedSec and is considered an industry leader in cybersecurity. Former Chief Security Officer of Diebold, David has led global cybersecurity teams, testified before Congress, and shapes cybersecurity policy. He co-authored the... Read More →

Friday October 11, 2024 1:00pm - 1:50pm MDT
Deadwood Mountain Grand - Track 1 1906 Deadwood Mountain Dr, Deadwood, SD

Track 1, 50 Minute Talk

1:00pm MDT

That's a Deal and That's a Legally Binding Offer: The Dark Side of AI

Friday October 11, 2024 1:00pm - 1:50pm MDT

Deadwood Mountain Grand - Track 2

Let's explore the darker side of AI! In this talk, we'll dissect various attack vectors such as prompt injection, malicious input designed to manipulate AI output; data extraction, which aim to siphon off sensitive information embedded within AI models; and evasion attacks, a nebulous category that includes techniques to deceive AI systems into incorrect processing or ignoring malicious content altogether.

Speakers

Brian Mead

I'm a seasoned cybersecurity professional with over 8 years of hands-on experience specializing in offensive security and conducting red team operations. With a passion for uncovering vulnerabilities and outsmarting adversaries, I thrive in the dynamic and challenging landscape of... Read More →

TJ Toterhi

I am an information security professional with experience in offensive and defensive operations. I am a penetration tester that's passionate about breaking and fixing systems and software. Realizing that not everyone shares this interest, I enjoy the opportunity to spread the good... Read More →

Friday October 11, 2024 1:00pm - 1:50pm MDT
Deadwood Mountain Grand - Track 2 1906 Deadwood Mountain Dr, Deadwood, SD

Track 2, 50 Minute Talk

1:00pm MDT

Felon in Five Minutes

Friday October 11, 2024 1:00pm - 2:00pm MDT

Deadwood Mountain Grand - Track 4 - Backstage

Felon in Five Minutes:

Peel back the mystique behind the most basic and effective ways that threat actors, criminals, and pentesters breach physical locations. All of these techniques can be done in less than five minutes.

Learn how to properly manage expectations and scoping for your next Physical Security adventures.

Speakers

Joseph Kingstone

Joseph Kingstone joined Black Hills Information Security (BHIS) in Fall 2021 as a Security Analyst. In this role, Joseph performs external and internal penetration tests, C2 pivots, and red teams. He’s had a desire to work at BHIS since transitioning into IT—and eventually penetration... Read More →

Friday October 11, 2024 1:00pm - 2:00pm MDT
Deadwood Mountain Grand - Track 4 - Backstage 1906 Deadwood Mountain Dr, Deadwood, SD

Track 4 - Backstage, Workshop

1:00pm MDT

A Journey through Insecure Destialization

Friday October 11, 2024 1:00pm - 4:00pm MDT

Homestake Adams Research and Cultural Center - Second Floor

Discovering and exploiting Insecure Deserialization vulnerabilities is not a simple task. In some cases, testers are fortunate that the work has been done for them, and a known exploit can be leveraged to exploit this vulnerability. But honestly, that's no fun, and the reality is that sometimes it'll be on the tester to do the hard work. In this workshop, I will take participants on a journey through Insecure Deserialization. Together, we'll discover a novel Insecure Deserialization vulnerability in a custom application, and step through the process of building and executing a zero-day exploit to compromise the affected application and server. At each bend in the trail, we'll explore the specifics of the process and the tools needed, and seek to gain an understanding of how and why developers create these dangerous vulnerabilities. Our journey will end with a discussion about the challenges of remediating Insecure Deserialization flaws, and participants will step back into reality with a new perspective of this potent and mysterious vulnerability.

Speakers

James is a cybersecurity consultant and co-founder of Secure Point Solutions, He helps small businesses and IT Providers to protect their data, systems, and networks from cyber threats. He has over 10 years of experience in information technology and cybersecurity, with certifications... Read More →

Friday October 11, 2024 2:00pm - 2:50pm MDT
Deadwood Mountain Grand - Track 2 1906 Deadwood Mountain Dr, Deadwood, SD

Track 2, 50 Minute Talk

2:15pm MDT

Badge Cloning - A Penetration Tester's Guide to Capturing and Writing Badges

Friday October 11, 2024 2:15pm - 4:00pm MDT

Deadwood Mountain Grand - Track 4 - Backstage

In this workshop, we distill key tactics from the comprehensive Practical Physical Exploitation course, tailored specifically for penetration testers looking to attack Physical Access Controls (PACS).

Participants will embark on a journey through the ins and outs of cloning badges during physical penetration tests. Explore the intricacies of long-range, short-range, and Stealth cloning tactics, gaining hands-on experience in the art of badge duplication. Delve into the realm of implantable devices, understanding their role in modern access control exploitation.

Join us as we uncover the nuances of downgrade/upgrade attacks and the protocols that make them possible. Learn to navigate the landscape of access control systems with expert guidance, equipping yourself with the knowledge to identify and exploit vulnerabilities.

By the end of this session, you'll wield an arsenal of cutting-edge techniques, ready to transform your facility into a bastion of high-security readiness. Don't miss this opportunity to elevate your skills and refine your physical security penetration testing skills.

Speakers

Kevin Johnson

CEO, Secure Ideas, LLC

Kevin Johnson is CEO of Secure Ideas, a consulting company dedicated to security testing and training. Kevin passionately advocates for cybersecurity through his work with Secure Ideas, as a global board member for OWASP and as a faculty member at IANS. During his over 30 years in... Read More →

Friday October 11, 2024 3:00pm - 3:50pm MDT
Deadwood Mountain Grand - Track 2 1906 Deadwood Mountain Dr, Deadwood, SD

Track 2, 50 Minute Talk

4:00pm MDT

CULTivating Growth and Connection

Friday October 11, 2024 4:00pm - 4:50pm MDT

Deadwood Mountain Grand - General Sesson

In this talk Wade will explore the psychological and social benefits of community involvement and mentorship, such as increased belonging, mental health, and professional growth. We'll discuss how these engagements enhance networking, skill development, and foster mutual learning and leadership. Additionally, practical strategies for effectively participating in communities and developing mentoring relationships will be outlined, addressing challenges like time management and cultural differences. The session aims to provide participants with actionable steps to enhance their personal and professional lives through active community and mentorship roles. Ideal for those seeking to strengthen community ties and pursue meaningful mentorship.

Speakers

Wade Wells

Friday October 11, 2024 4:00pm - 4:50pm MDT
Deadwood Mountain Grand - General Sesson 1906 Deadwood Mountain Dr, Deadwood, SD

General Session, Keynote

5:00pm MDT

Wild West Hackin' Fest Awards Ceremony

Friday October 11, 2024 5:00pm - 5:15pm MDT

Deadwood Mountain Grand - General Sesson

Friday October 11, 2024 5:00pm - 5:15pm MDT
Deadwood Mountain Grand - General Sesson 1906 Deadwood Mountain Dr, Deadwood, SD

General Session

8:00pm MDT

Dance Party

Friday October 11, 2024 8:00pm - 11:00pm MDT

Elks Club

Friday October 11, 2024 8:00pm - 11:00pm MDT
Elks Club

Elks Club - 696 Main St. Deadwood, Fun and Games