← All talks
Team

Blue talks at BSides

681 talks tagged Blue from 93 chapters of BSides events worldwide.

Related topics
Detection EngineeringTechnicalTalkThreat IntelDFIRIntermediary
47:15
Closed For Business: Taking Down Darknet Markets
John Shier
BSides London · 2019
War StoriesIntroBlueCase Studies and Incidents AnalysisTalk
Open →2019-06
42:16
Catching the Catchers: Open Source Stingray Detection in the Wild
Michael Raymond
Bsides CT 2025
TechnicalCellular SecurityOSINTIntermediaryBlueTalk
Open →2025-12
33:48
Deep Dive on the Dark Web
John Shier
BSides London · 2018
TechnicalIntroBlueTalk
Open →2018-06
49:41
Open Source Malware Lab
Robert Simmons
BSides London · 2016
TechnicalDFIRDetection EngineeringMalware AnalysisIntermediaryBlueTechnical Deep-divesTalk
Open →2016-07
28:04
Exposing Malicious USB Cables: Hardware Detection of Embedded Implants
Jaynie Shorb
BSides PDX · 2022
TechnicalIntermediaryBlueTechnical Deep-divesDemoTalk
Open →2022-10
31:04
Microsoft EMET Overview and Demonstration
Kevin Ginousso
BSides Peru 2015
TechnicalToolingBlueDemoTalk
Open →2015-06
27:37
PowerShell-Fu — Hunting on the Endpoint
Chris Gerritz
BSides Las Vegas · 2016
TechnicalDFIRMalware AnalysisThreat IntelBlueTechnical Deep-divesTalk
Open →2016-08
18:23
Forensicating Windows Artifacts: Investigation Without Event Logs!
Renzon Cruz
BSides London · 2019
TechnicalBlueTalk
Open →2019-06
44:22
Diamond Model for Intrusion Analysis: What You Need to Know
Andy Pendergast
BSides DC · 2014
ResearchBlueMethodologyTalk
Open →2014-10
46:38
How to 10X Your Company's Security (Without a Series D)
Clint Gibler
BSidesSF · 2020
TechnicalCloud IAMDevSecOpsThreat ModelingBlueTalk
Open →2020-03
48:48
Confessions Of A Bug Bounty Triager
Glenn Pegden
BSides Leeds · 2019
CommunityBlueTalk
Open →2019-01
51:37
Security Onion: Peeling Back the Layers of Your Network in Minutes
Doug Burks
BSides Augusta · 2013
TechnicalToolingDFIRDetection EngineeringNetwork SecurityBlueDemoTalk
Open →2013-09
32:11
Hijacking .NET to Defend PowerShell
Amanda Rousseau
BSidesSF · 2017
TechnicalBlueTalk
Open →2017-03
48:21
PowerShell Security: Defending the Enterprise from the Latest Attack Platform
Sean Metcalf
BSides DC · 2016
TechnicalActive DirectoryBlueTalk
Open →2016-10
36:51
ThreatPursuit VM
Dan Kennedy
BSides Canberra · 2020
ToolingMalware AnalysisThreat IntelBlueDemoTalk
Open →2020-05
1:05:41
Hunting for Credential Dumping Attacks in Modern Windows Environments
Andrew Case
BSides Philly · 2023
TechnicalActive DirectoryDFIRMalware AnalysisBlueTalk
Open →2024-01
30:27
David Bianco - The Secret Origins of the Pyramid of Pain
David Bianco
BSides Augusta · 2022
TechnicalDetection EngineeringThreat IntelIntermediaryBlueCase Studies and Incidents AnalysisMethodologyTalk
Open →2022-10
28:52
BSidesSF 2017 - Linux Monitoring at Scale with eBPF (Brendan Gregg & Alex Maestretti)
Brendan GreggAlex Maestretti
BSidesSF · 2017
TechnicalDetection EngineeringNetwork SecurityBlueTalk
Open →2017-03
44:35
Anti-forensics Techniques Used By Threat Actors In The Wild
Hela Lucas
BSides London · 2024
TechnicalDFIRMalware AnalysisBlueCase Studies and Incidents AnalysisTalk
Open →2024-02
47:47
IDS Configuration for Beginners
Nick Leghorn
BSides SATX · 2018
TechnicalIntroBlueDemoTalk
Open →2018-07
53:54
Reverse Engineering Sherlock Holmes Style: Obfuscated APIs & The Art of Deduction
Katie Deakin-Sharpe
BSides Canberra
TechnicalMalware AnalysisReverse EngineeringAdvancedBlueTalk
Open →2025-11
50:28
PowerShell Is DEAD — Epic Learnings!
Ben TurnerDoug McLeodRob Maslen
BSides London · 2019
TechnicalAdvancedBlueRedTalk
Open →2019-06
47:45
John Heasman - Doing More in AppSec by Doing Less
John Heasman
BSides Knoxville
TechnicalThreat ModelingWeb AppSecBlueMethodologyTalk
Open →2024-09
34:22
Misbehaving Binaries: Methods to Detect LOLBin Abuse
Rachel Schwalk
BSides KC · 2023
TechnicalBlueTalk
Open →2023-10
38:26
The Woman Who Squashed Terrorists When an Embassy Gets Hacked
Chris Kubeka
BSides Cape Town · 2019
War StoriesDFIRThreat IntelBlueCase Studies and Incidents AnalysisKeynote
Open →2019-12
46:44
Discover Analytic Gaps with Unfetter
Matt DavisShaun McCullough
BSides DC · 2017
TechnicalBlueTalk
Open →2017-10
42:44
Threat Hunting On Linux And Mac With Auditbeat System Module
Aaron Jewitt
BSides Luxembourg · 2019
TechnicalDFIRDetection EngineeringBlueTalk
Open →2019-11
55:35
Objectively Measuring Hunt Value
Justin KohlerPatrick Perry
BSides Augusta · 2018
TechnicalDetection EngineeringThreat IntelBlueTalk
Open →2018-10
50:12
Active Directory Password Blacklisting
Leeren Chang
BSides Las Vegas · 2018
TechnicalActive DirectoryBlueDemoTalk
Open →2018-09
29:09
Implementing a Kick-Butt Training Program: BLUE TEAM GO!
Ryan Chapman
BSidesSF · 2019
CareerBlueTalk
Open →2019-03
40:35
Defense In Depth: Designing Networks That Survive First Contact
BSides Delaware · 2012
TechnicalNetwork SecurityBlueTalk
Open →2012-11
45:10
Gollum: One Anti-Phish Bot to Rule Them All
Byron Rudman
BSides Cape Town · 2019
TechnicalDetection EngineeringThreat IntelToolingBlueTalk
Open →2019-12
56:11
Polowanie na czerwony październik
Dawid GolakJarosław Pukacki
BSides Warsaw · 2019
BlueTalk
Open →2019-10
1:07:27
Polowanie na wewnętrznego wroga
Mateusz Pawłowski
BSides Warsaw · 2019
TechnicalBlueTalk
Open →2019-10
56:31
Using JA3: Asking for a Friend?
Justin WarnerEd Miles
BSides DC · 2019
TechnicalCryptographyDFIRDetection EngineeringNetwork SecurityBlueRedTalk
Open →2019-11
13:24
MITRE D3FEND
James Gibbins
BSides London · 2022
TechnicalDetection EngineeringThreat ModelingIntroBlueTalk
Open →2022-01
50:58
It, Do it Live (PowerShell Digital Forensics)
Jared Atkinson
BSides DC · 2015
TechnicalBlueDemoTalk
Open →2015-11
36:18
Macabre Stories of a Hacker in the Public Health Sector (Chile)
Philippe Delteil
BSides Cape Town · 2019
War StoriesDFIRPrivacyVulnerability ResearchBlueCase Studies and Incidents AnalysisTalk
Open →2019-12
41:04
Hunt Or Be Hunted
Alex Davies
BSides London · 2017
TechnicalBlueTalk
Open →2017-06
46:31
Detection as Code: The Engineering-Focused Future of Detection and Response
Jackie BowJulie Agnes SparksJessica RozhinLouis Barrett
BSidesSF · 2023
TechnicalDetection EngineeringDevSecOpsThreat IntelBluePanel
Open →2023-05
24:21
Find, Fix, Finish: Generating Competitive Advantage With Threat Hunting
Brody Nisbet
BSides Canberra · 2024
TechnicalDetection EngineeringThreat IntelBlueMethodologyTalk
Open →2024-10
10:54
Using Network Miner To Reconstruct Network Traffic
Matthew Short
BSides London · 2019
TechnicalIntroBlueDemoTalk
Open →2019-06
24:45
Honeydocs and Offensive Countermeasures
Roy Firestein
BSides Toronto · 2014
TechnicalDFIRThreat IntelBlueDemoTalk
Open →2014-12
55:25
Confidently Measuring Attack Technique Coverage by Asking Better Questions
Matt Graeber
BSides Augusta
TechnicalDetection EngineeringMalware AnalysisReverse EngineeringBlueTalk
Open →2021-10
44:06
Cyberhydraulik w akcji - czyli skąd i jak cieknie!
Adam Lange
BSides Warsaw · 2019
BlueRedTalk
Open →2019-10
32:12
Back to the SOCless Future
Ubani Balogun
BSidesSF · 2019
TechnicalBlueTalk
Open →2019-03
39:22
Inside The Ransomware Toolbox: How To Beat Cybercriminals At Their Own Game
Will Thomas
BSides London · 2025
TechnicalBlueTalk
Open →2025-02
30:07
GSuite Digital Forensics and Incident Response
Megan Roddie
BSides SATX · 2018
TechnicalCloud IAMDFIRIntermediaryBlueCase Studies and Incidents AnalysisTalk
Open →2018-07
46:36
Incident Management with PowerShell
Matt Johnson
BSides Detroit · 2013
TechnicalDFIRBlueTalk
Open →2013-06
47:42
Threat Hunting with RockNSM
Bradford Dabbs
BSides KC · 2018
TechnicalBlueTalk
Open →2018-06
19:45
Attacking Malware with AI
Dimitris Prasakis
BSides Munich · 2022
TechnicalAI SecurityMalware AnalysisBlueTalk
Open →2022-05
37:51
Building an Effective Intrusion Detection Program
Jason Craig
BSidesSF · 2017
TechnicalDFIRDetection EngineeringThreat IntelBlueTalk
Open →2017-03
20:43
Application Fingerprinting with Kitsune
Peter Vicherek
BSides Toronto · 2015
TechnicalIntermediaryBlueCase Studies and Incidents AnalysisTalk
Open →2015-11
16:01
SOC It Up! Common Frustrations and Solutions in SOC Teams Today
Jymit Khondhu
BSides London · 2019
CommunityTechnicalBlueTalk
Open →2019-06
23:20
Bye-Bye False Positives: Using AI to Improve Detection
Ivan Novikov
BSidesSF · 2019
TechnicalWeb AppSecBlueTalk
Open →2019-03
29:35
LSASS - What should we be doing?
Robert Wilson
BSides Augusta · 2021
TechnicalActive DirectoryThreat ModelingIntermediaryBlueTalk
Open →2021-10
29:03
macOS Endpoint Security Framework: What It Can Do And How To Use It
Connor Morley
BSides Munich · 2022
TechnicalDetection EngineeringMalware AnalysisBlueTalk
Open →2022-05
44:54
A Quick, Efficient Yet Not Entirely Sane Introduction to Deception
John Strand
BSides Frankfurt
TechnicalActive DirectoryDetection EngineeringIntermediaryBlueDemoTalk
Open →2025-03
38:25
How to Stop Worrying & Build a Modern Detection & Response Program
Allyn Stott
BSides Berlin · 2023
TechnicalDetection EngineeringThreat IntelThreat ModelingBlueMethodologyTalk
Open →2024-01
29:22
Analyzing AutoIt Malware: Tools and Techniques
Chris NealJerome Radcliffe
BSides Las Vegas · 2021
TechnicalMalware AnalysisReverse EngineeringIntermediaryBlueTalk
Open →2021-08
27:54
Blue Team Fundamentals
Benjamin Hering
BSidesSF · 2018
TechnicalIntroBlueTalk
Open →2018-04
52:59
Hiding in the clouds: How attackers can use applications for sustained persistence and how to find it
Mark MorowczynskiMichael Epping
Bsides CT · 2020
TechnicalCloud IAMBlueTalk
Open →2020-11
50:58
Threat hunting: Using MITRE ATT&CK against Carbanak malware
Amol Sarwate
BSidesSF · 2022
TechnicalDetection EngineeringMalware AnalysisThreat IntelIntermediaryBlueCase Studies and Incidents AnalysisTechnical Deep-dives+1
Open →2022-07
29:42
Maltego In The Enterprise
David Bressler
BSides Boston · 2013
TechnicalOSINTThreat IntelBlueDemoTalk
Open →2013-06
25:05
How to Kill an AWS Access Key
Benjamin Hering
BSidesSF · 2020
TechnicalCloud IAMBlueTalk
Open →2020-03
31:20
Don't Boil the Ocean: Using MITRE ATT&CK to Guide Hunting Activity
John Stoner
BSidesSF · 2019
TechnicalBlueTalk
Open →2019-03
57:19
PowerShell post-exploitation, the Empire has fallen
Michael Gough
BSides SATX · 2018
TechnicalBlueRedTalk
Open →2018-07
33:40
Quick And Easy Forensic Timelines Via Sysmon, WEF, And ELK
Aaron Jewitt
BSides Munich · 2019
TechnicalDFIRDetection EngineeringBlueTalk
Open →2019-03
22:40
Pensieve: Finding Malicious Artifacts in Container Environments
Yathi Naik
BSidesSF · 2018
TechnicalContainer SecurityDFIRMalware AnalysisIntermediaryBlueTechnical Deep-divesTalk
Open →2018-04
18:02
Making Malware Analysis Less Scary
Jack Resetti
BSides London · 2025
TechnicalMalware AnalysisReverse EngineeringIntroBlueDemoTalk
Open →2026-03
27:56
Honeypot Boo Boo: Better Breach Detection With Deception Inception
Justin Varner
BSides Munich
TechnicalDetection EngineeringThreat IntelBlueTalk
Open →2023-10
43:20
Eyeing the Onion
Brad ShoopChris Rimondi
BSides Augusta · 2013
TechnicalDetection EngineeringNetwork SecurityBlueDemoTalk
Open →2013-09
33:30
MITRE D3FEND and How to Master It
Saba Bagheri
BSides Sydney · 2025
TechnicalDetection EngineeringThreat IntelThreat ModelingBlueCase Studies and Incidents AnalysisMethodologyTalk
Open →2025-02
43:40
Diaphora: a new FOSS program diffing tool
Joxean Koret
BSides Lisbon · 2015
TechnicalReverse EngineeringVulnerability ResearchIntermediaryBlueTechnical Deep-divesTalk
Open →2015-07
33:39
A year in the wild: fighting malware at the corporate level
Kuba Sendor
BSidesSF · 2016
TechnicalBlueTalk
Open →2016-04
14:55
Connecting the dots: A beginner's experience of threat actor tracking - Keith Short
Keith Short
BSides London · 2018
TechnicalMalware AnalysisThreat IntelIntroBlueTalk
Open →2018-06
56:30
Switching Sides: The Practical Benefits of Switching from Red to Blue to Purple
Maddie Stone
BSides Charleston · 2019
CareerBluePurpleRedKeynote
Open →2019-11
24:40
Logs and Tactical Defence
Allan Stojanovic
BSides Toronto · 2014
TechnicalDetection EngineeringNetwork SecurityThreat IntelBlueTalk
Open →2014-12
22:52
WiFi Pineapple Active Detection via a Raspberry Pi Zero
Jason Bertman
BSides SLC · 2020
TechnicalWireless SecurityBlueTalk
Open →2020-03
17:09
I've seen you get hacked! (AI Real-Time Attack Simulation)
BSides Joburg
TechnicalIntermediaryBlueTechnical Deep-divesDemo
Open →2024-12
51:22
The No BS SOC Story
Mark Simos
BSides Tampa · 2024
CareerDetection EngineeringBlueTalk
Open →2024-05
58:15
Modern Linux Kernel Mitigations
Ray VeldkampMatthew Kurz
BSides Canberra · 2023
TechnicalVulnerability ResearchBlueTechnical Deep-divesTalk
Open →2023-10
25:35
Secret Hunting
Tanya Janca
BSidesSF · 2023
TechnicalDevSecOpsSupply Chain SecurityIntroBlueTalk
Open →2023-05
51:24
Red Blue Purple AI
Jason Haddix
BSides Boulder · 2024
TechnicalAI SecurityOSINTBluePurpleRedKeynote
Open →2024-09
29:14
Alex Kirk - Incident response and threat hunting using Bro/Zeek data
Alex Kirk
BSides Augusta · 2019
TechnicalDFIRDetection EngineeringThreat IntelIntermediaryBlueCase Studies and Incidents AnalysisTechnical Deep-dives+1
Open →2019-10
48:34
Using DeTT&CT and the MITRE ATT&CK Framework to Assess Your Security Posture
David Branscome
BSides Knoxville · 2022
TechnicalDetection EngineeringThreat ModelingIntermediaryBlueDemoTalk
Open →2022-05
46:07
Canary Tokens - why and how to implement them and related gotchas
BSides PDX · 2024
TechnicalBlueTalk
Open →2024-11
30:15
Incident Response Evidence Collection & Triage
John Meyers
BSides Peru · 2017
TechnicalDFIRMalware AnalysisBlueDemoTalk
Open →2017-06
26:09
Life of a Bug: An Insight on the GitHub Bounty Program
Jeffrey GuerraCaitlin Buckshaw
BSidesSF · 2023
TechnicalVulnerability ResearchBlueCase Studies and Incidents AnalysisTalk
Open →2023-05
50:58
Tales from the trenches: Cyber brawl with an Advanced Threat Actor
Ishaq ZafarAhmed Muneeb
BSides Islamabad · 2020
War StoriesBlueTalk
Open →2020-11
43:03
Social Engineerios: How AI Changes (and Doesn't Change) Social Engineering
Aaron Strong
BSides Tampa · 2026
TechnicalAI SecuritySocial EngineeringIntroBlueTalk
Open →2026-02
19:52
Using an mTLS Identity Provider to achieve Password-less auth, Device Health Attestation, and low Earth orbit
Armen Tashjian
BSidesSF · 2023
TechnicalCloud IAMCryptographyBlueTalk
Open →2023-05
31:52
A Case Study of MacOS Supply Chain Compromise
Jason CraigMichael George
BSidesSF · 2018
TechnicalDetection EngineeringMalware AnalysisSupply Chain SecurityBlueCase Studies and Incidents AnalysisTechnical Deep-divesTalk
Open →2018-04
30:34
Ethical Hacking: DIY Mobile Security Workstation (For Cheap)
Dale Meredith
BSidesSF · 2019
ToolingBlueRedDemo
Open →2019-03
29:46
X-Ray of Malware Evasion Techniques: Analysis, Dissection, Cure
Thomas Roccia
BSides Sydney · 2023
TechnicalMalware AnalysisReverse EngineeringBlueTechnical Deep-divesTalk
Open →2023-05
41:49
Prioritising your security work using MITRE ATT&CK
Floris Ladan
BSides Tallinn · 2022
TechnicalDetection EngineeringThreat IntelThreat ModelingIntermediaryBlueTalk
Open →2022-10
59:16
Facing the Kobayashi Maru: Incident Response Tabletop Exercises
JC
BSides SLC · 2017
TechnicalThreat ModelingBlueTalk
Open →2017-06
24:59
Logging, Monitoring, and Alerting in AWS (The TL;DR)
Jonathon Poling
BSidesSF · 2018
TechnicalBlueTalk
Open →2018-04
32:51
Non-Human Identity Attack Surface: A Live Hacking Demo and Defense Strategies
Michael Silva
BSides Toronto · 2024
TechnicalCloud IAMSupply Chain SecurityBlueRedDemo
Open →2024-10
45:41
Surfacing a Hydra: Unveiling a Multi-Headed Chinese State-Sponsored Campaign Against a Foreign Government
Mark Parsons
BSides Charleston · 2024
TechnicalDetection EngineeringMalware AnalysisThreat IntelBlueCase Studies and Incidents AnalysisTalk
Open →2024-11
View all 681 talks tagged Blue →