Technology
Christopher Glyer and Nick Carr interview Dave Kennedy (@HackingDave)on his experience running DerbyCon over the years, what conferences heplans to attend next, and future plans to build and support DerbyConCommunities (DerbyCom). Red teaming in the last few years has startedto get harder due to improvements in security visibility, improvedsecurity tools, and better SOC teams. They discussed how Dave's redteam's @TrustedSec use security tools to baseline what their activitylooks like so they can try and blend in with legitimate activity. Thetrend of red teams shifting away from PowerShell to C-basedtools/backdoors. Finally, they discussed both new and old (but stilleffective) techniques recently seen in the wild that can evadedetection including using py2exe and pyinstaller basedbackdoors/tools.