Red Team
Defensive teams are no longer only relying on AntiVirus scanners to prevent threats. EDRs and SIEMs have drastically increased detection capabilities and are forcing not just Penetration Testing and Red-Teaming operations but threat actors to constantly innovate and develop new techniques. In this talk, I will walk you through how various features of EDRs function, and how I built a "mini-EDR" focused on Windows ETW telemetry to sanity check offensive tools and malware before using them in live environments.
Mike Hedlund is a developer turned sysadmin turned pentester with a habit of breaking things and a need to always know more. Currently a Sr Security Consultant, I run network penetration tests and purple teams. While not pentesting, I develop malware using C, Assembly and copious amounts of coffee, research attack techniques in my home lab, and enjoy playing with fun obscure programming languages like Crystal.
We proudly present SecretCon, an entirely unparalleled conference for the state of Minnesota, built for our new digital reality. This conference is dedicated to the many specialties of our hacker, cybersecurity, and privacy community. We have taken it upon ourselves to construct a conference that not only embraces our past, but also looks to the future. Join us!