Home
Talks
CFP Guide
What is BSides?
About
Contact
Light
← All talks
Tool
BSides talks featuring Active Directory
196
talks mention this tool across
66
BSides chapters.
Official site ↗
Talks featuring Active Directory
51:35
Attacking Kerberos: Kicking the Guard Dog of Hades
Tim Medin
BSides Orlando
· 2015
Technical
Active Directory
Kerberos
Intermediary
Red
Talk
Open →
2015-11
43:51
Błędy administratorów w kontekście ostatnich ataków
Mariusz Burdach
BSides Warsaw
· 2017
Open →
2017-10
51:46
Understanding and Attacking Delegations in Active Directory
Venkatraman K
BSides SATX
· 2021
Technical
Active Directory
Kerberos
Red
Demo
Talk
Open →
2021-06
30:33
Six Degrees of Infiltration: Using Graph to Understand your Infrastructure and Optimize Security Decision Making
Sacha Faust
BSidesSF
· 2018
Technical
Talk
Open →
2018-04
41:58
Introducing Office 365 Attack Toolkit
Rio Sherri
BSides Leeds
· 2020
Technical
Open →
2020-07
51:02
Powershell for CyberWarriors - Russel Van Tuyl
BSides Knoxville
Open →
2016-06
50:12
Active Directory Password Blacklisting
Leeren Chang
BSides Las Vegas
· 2018
Technical
Active Directory
Blue
Demo
Talk
Open →
2018-09
27:53
Why You Should Use Offensive Techniques to Teach Defensive
Michael Kranch
BSides KC
· 2019
Career
Talk
Open →
2019-06
55:18
Windows Credential Attacks and Mitigations
Chad Tilbury
BSides SLC
· 2017
Technical
Active Directory
Purple
Red
Talk
Open →
2017-07
26:36
Latest evasion techniques in fileless malware - fl3uryz & Andrew Hay
BSides Las Vegas
Open →
2016-08
59:59
Windows 10 Forensics
Mariusz Litwin
BSides Warsaw
· 2018
Technical
Talk
Open →
2018-10
48:41
Offensive Ansible For Red Teams
Leo McCavana
BSides Belfast
· 2020
Technical
Active Directory
Tooling
Red
Demo
Talk
Open →
2020-01
47:48
Get-Help: An intro to PowerShell and how to use it for evil
Jared Haight
BSides Charleston
· 2015
Technical
Intro
Talk
Open →
2015-12
47:16
Karl Fosaaen - Attacking Azure Environments with PowerShell - BSides Portland 2018
Karl Fosaaen
BSides PDX
· 2018
Technical
Cloud IAM
Red
Demo
Talk
Open →
2019-02
48:38
Opening Acts: How Attackers Get Their Big Breaks
Chuck Willis
Evan Peña
BSides DC
· 2014
Technical
Case Studies and Incidents Analysis
Talk
Open →
2014-10
49:52
Abusing Windows with PowerShell and Microsoft debuggers
Pierre-Alexandre Braeken
BSides DC
· 2016
Technical
Active Directory
Advanced
Red
Talk
Open →
2016-10
29:22
Analyzing AutoIt Malware: Tools and Techniques
Chris Neal
Jerome Radcliffe
BSides Las Vegas
· 2021
Technical
Malware Analysis
Reverse Engineering
Intermediary
Blue
Talk
Open →
2021-08
52:59
Hiding in the clouds: How attackers can use applications for sustained persistence and how to find it
Mark Morowczynski
Michael Epping
Bsides CT
· 2020
Technical
Cloud IAM
Blue
Talk
Open →
2020-11
14:06
The Cyber Mentor: Interview with Heath Adams
Heath Adams
BSides Ahmedabad
· 2023
Career
Talk
Open →
2023-02
33:40
Quick And Easy Forensic Timelines Via Sysmon, WEF, And ELK
Aaron Jewitt
BSides Munich
· 2019
Technical
DFIR
Detection Engineering
Blue
Talk
Open →
2019-03
48:55
AD CS means "Active Directory is Cheese (Swiss)" - Misconfigurations & Remediation
Jake Hildreth
BSides Charm
· 2022
Technical
Active Directory
Cryptography
Talk
Open →
2022-07
27:32
Access Control with Concierge: One Tool to Rule Them All
Karthik Rangarajan
BSidesSF
· 2017
Technical
Active Directory
Cloud IAM
Talk
Open →
2017-03
27:56
Honeypot Boo Boo: Better Breach Detection With Deception Inception
Justin Varner
BSides Munich
Technical
Detection Engineering
Threat Intel
Blue
Talk
Open →
2023-10
7:47:30
BSides Las Vegas 2019 D1 - Ground 1234!
Alvaro Muñoz
Alexander Miros
BSides Las Vegas
· 2019
Technical
Talk
Open →
2019-08
5:19:26
BSidesPDX 2025 - Saturday, Track 2
BSides PDX
· 2025
Open →
2025-10
23:04
Security Automation Simplified
Moses Schwartz
BSidesSF
· 2019
Technical
DevSecOps
Intro
Talk
Open →
2019-03
24:39
PG - Unifying the Kill Chain - Paul Pols
BSides Las Vegas
Open →
2018-09
52:17
The Current State of Microsoft Identity Security: Common Security Issues
Sean Metcalf
BSides Charm
· 2024
Technical
Active Directory
Cloud IAM
Threat Intel
Blue
Case Studies and Incidents Analysis
Talk
Open →
2024-06
30:06
Windows Event Forwarding and OSSEC — You can do this!
Robert Wilson
BSides Augusta
· 2018
Technical
DevSecOps
Blue
Talk
Open →
2018-11
47:51
BSidesCHS 2016: "Hunting High-Value Targets in Corporate Networks" - Patrick Fussell & Josh Stone
Patrick Fussell
Josh Stone
BSides Charleston
· 2016
Technical
Talk
Open →
2016-11
31:05
Advanced Persistent Teenagers: Understanding the Lapsus$ Playbook
Benjamin Hering
BSidesSF
· 2024
Technical
Active Directory
Social Engineering
Threat Intel
Case Studies and Incidents Analysis
Talk
Open →
2024-07
23:56
Medical Records and Default Passwords
Qasim Ijaz
BSides Charleston
· 2019
Technical
Talk
Open →
2019-11
1:07:30
BSIDESLV 2018 - Proving Ground - Day One
Erik Bryan
BSides Las Vegas
· 2018
Technical
Active Directory
Vulnerability Research
Talk
Open →
2018-08
33:22
BSidesMCR 2019: Navigating The Red Forest - Derek Price
BSides Manchester
Open →
2019-09
7:09:43
BSides Las Vegas 2019 Day Two - Ground 1234!
BSides Las Vegas
Open →
2019-08
22:26
Treat the Problems, Not the Symptoms
Igal Gofman
Yaron Shani
BSidesSF
· 2019
Technical
Active Directory
Talk
Open →
2019-03
52:15
The Rise and Rise of Advanced eCrime Threat — Incident Response Edition
Anurag Khanna
BSides Canberra
Technical
Talk
Open →
2024-11
54:52
Protecting the Forest, Starting at the Roots: AD Hardening & Defence using Modern Techniques
James Spencer
BSides Canberra
· 2025
Technical
Active Directory
Kerberos
Intermediary
Blue
Talk
Open →
2025-11
48:35
CI/CD Security: A New Eldorado
Remi Escourrou
Xavier Gerondeau
Gauthier Sebaux
BSides Las Vegas
· 2022
Technical
Cloud IAM
DevSecOps
Supply Chain Security
Red
Talk
Open →
2022-09
54:10
Beautiful Basics
Rob Fuller
BSides Vancouver
· 2022
Career
Keynote
Open →
2022-07
45:25
Active Directory Enumeration with LDAP
Stephen Bradshaw
BSides Canberra
· 2024
Technical
Active Directory
Talk
Open →
2024-10
5:20:38
Bsides 2018 Track 2
BSides Vancouver
Open →
2018-03
43:12
Tracking Malicious Logon: Visualize and Analyze Active Directory Event Logs
Shusei Tomonaga
Tomoaki Tani
BSides Las Vegas
· 2018
Technical
Active Directory
DFIR
Threat Intel
Blue
Talk
Open →
2018-09
40:55
Quando o Simples Vence: Anatomia Real dos Ataques que Continuam Funcionando
Ricardo Tavares
BSides São Paulo
· 2025
War Stories
Active Directory
Detection Engineering
Malware Analysis
Threat Intel
Blue
Purple
Case Studies and Incidents Analysis
+1
Open →
2025-06
29:53
Army of Proxies! How Netflix scales identity based zero trust architecture
Grant Callaghan
BSidesSF
· 2024
Technical
Cloud IAM
Talk
Open →
2024-07
42:08
The Adversary Mindset: Practical examples from the field
Yossi Sassi
BSides Budabest
· 2024
Technical
Talk
Open →
2024-09
50:37
Terry D . Smith II - Threat Hunting and Hacking Questions which Get Increasingly Harder
Terry D. Smith II
BSides Augusta
Technical
Blue
Talk
Open →
2023-10
32:47
Domain Persistence in Active Directory: Detection, Triage, and Recovery
Nicolas Shyne
BSides Belfast
· 2025
Technical
Active Directory
Kerberos
Blue
Talk
Open →
2025-02
43:21
The Problem With Identity Security & How To Fix It
Sean Metcalf
BSides Dublin
Technical
Talk
Open →
2024-06
27:22
Pentests: The Jason Bourne Approach — Turning Regular Biros Into Weapons
Andy Gill
BSides Leeds
· 2023
War Stories
Active Directory
Social Engineering
Red
Talk
Open →
2023-07
49:34
How to Defend Against Penetration Testers And Win - Paul Asadoorian
BSides Boston
Open →
2017-05
50:24
From Kali and a Couple of VMs to NextGen Home Lab - An Approach to Practice and Develop your Skills
Bashar Shamma
BSides SATX
· 2020
Technical
Talk
Open →
2020-08
39:38
10 Things I Wish Every CISO Knew Before an Incident: A View from the IR Trenches
Patterson Cake
BSides Knoxville
· 2023
Technical
DFIR
GRC
Talk
Open →
2023-05
47:15
Chris Myers and Barrett Adams Building a Cloud Pentest Lab (and how we blew some up)
Chris Myers
Barrett Adams
BSides Delaware
· 2018
Technical
Talk
Open →
2018-11
25:40
Red and Blue Ping Pong: Living Off the Land in Windows Attack and Defense
Lee Kagan
Anton Ovrutsky
BSides Toronto
· 2017
Technical
Active Directory
Malware Analysis
Purple
Demo
Talk
Open →
2018-01
57:04
Network Segmentation without a Network Engineer
Mike Burns
BSides Charm
· 2024
Technical
Active Directory
Detection Engineering
Network Security
Talk
Open →
2024-06
26:50
Survival of the Fittest: Password Edition!
Kevin Neely
BSides PDX
· 2018
Technical
Blue
Talk
Open →
2019-02
55:34
Adding PowerShell to your Arsenal with PSAttack
Jared Haight
BSides Charleston
· 2016
Technical
Talk
Open →
2016-11
27:15
Abusing Azure Arc: From Service Principal Exposed To Reverse Shell
Christian Bortone
BSides Leeds
· 2024
Technical
Active Directory
Cloud IAM
Advanced
Red
Technical Deep-dives
Talk
Open →
2024-07
50:12
Protect Your Most Sensitive Users With the Protected Users Group
Jake Hildreth
BSides Charm
· 2024
Technical
Active Directory
Kerberos
Blue
Talk
Open →
2024-06
33:55
Behavioral Analysis using DNS, Network Traffic and Logs
Josh Pyorre
BSides Amsterdam
· 2017
Technical
Blue
Talk
Open →
2017-09
40:07
Active Directory ain't going anywhere, so we might as well secure it
Eric Woodruff
BSides KC
Technical
Active Directory
Blue
Talk
Open →
2024-05
49:40
Top 10 AD Mistakes that can lead to being Pwned
Adam Steed
BSides San Diego
· 2017
Technical
Active Directory
Kerberos
Blue
Talk
Open →
2017-01
25:01
Windows 11 At Your Service
Michael Bargury
BSidesSF
· 2023
Technical
Cloud IAM
Malware Analysis
Red
Talk
Open →
2023-05
47:50
Passive and Active Defense by Jason Maynard
Jason Maynard
BSides Edmonton
Talk
Open →
2018-09
31:20
Getting Better with Data - Steph Locke
Steph Locke
BSides London
· 2016
Technical
Talk
Open →
2016-07
51:40
Let the Children Play — Leveraging ADCS for Persistence in Parent-Child Configured Forests
Tinus Green
BSides Cape Town
· 2023
Technical
Active Directory
Kerberos
Vulnerability Research
Advanced
Blue
Red
Technical Deep-dives
+1
Open →
2023-12
6:06:45
BSides Delaware 2017 - Day 2
Alex Rubin
BSides Delaware
· 2017
Technical
Active Directory
Reverse Engineering
Tooling
Red
Talk
Open →
2017-11
23:32
G1234! - Guardians of GitHub - Joshua Danielson & Dileep Gurazada
BSides Las Vegas
Open →
2018-09
24:01
Mining Software Vulnerabilities in SCCM with NIST's NVD: Data Challenges and Machine Learning Solutions
Loren Gordon
BSides Las Vegas
· 2017
Technical
Threat Intel
Vulnerability Research
Talk
Open →
2017-09
12:30
Tales from the DevSecOps world: SIEM completely as Code
George Tsigourakos
Kyriaki Solomidou
John Torakis
BSides Athens
· 2022
Technical
DevSecOps
Talk
Open →
2022-06
26:44
You Must Search Before You Destroy
Adam Steed
BSides SLC
· 2015
Technical
Talk
Open →
2015-04
48:51
PowerShell pew pew pew: Skillz 4 blue team
Ashley McGlone
BSides Columbus
· 2020
Technical
Detection Engineering
Blue
Talk
Open →
2020-08
35:25
Between You and Me and the Network Security Boundary
Patrick Fussell
BSides DC
· 2017
Technical
Red
Talk
Open →
2017-10
45:49
Scan Pwn Next! – exploiting service accounts in Windows
Andrey Dulkin
Matan Hart
BSidesSF
· 2016
Technical
Active Directory
Kerberos
Vulnerability Research
Red
Talk
Open →
2016-04
18:07
Ransomware incidents demystified
Thanassis Diogos
BSides Athens
· 2021
War Stories
DFIR
Malware Analysis
Threat Intel
Case Studies and Incidents Analysis
Talk
Open →
2021-07
45:47
Bye Bye NTLM
Evgenij Smirnov
BSides Berlin
· 2023
Technical
Active Directory
Kerberos
Blue
Talk
Open →
2024-01
26:19
Mapping the Human Attack Surface - Louis DiValentin (Master Chen)
BSides Las Vegas
Open →
2016-08
37:01
BSides Sofia 2022: AD Reconnaissance Red Team Exercise in Finding Hidden AD Relationships
Kristian Mladenov
Tsvyatko Bikov
BSides Sofia
· 2022
Technical
Active Directory
Red
Talk
Open →
2022-04
30:47
Mitigating Lateral Movement: Quick Wins
Robert Wilson
BSides Augusta
· 2019
Technical
Talk
Open →
2019-10
37:13
Wild Wild Web App to Domain Admin: A Case Study
Nacho Sorribas
BSides Lisbon
· 2017
Technical
Active Directory
Web AppSec
Case Studies and Incidents Analysis
Talk
Open →
2017-11
14:50
TryHackingMy Way From Cyber Sales to Cyber SOC
R4ck4tt4ck
Michael Rack
BSides London 2025
Career
Career & Soft Skills
Detection Engineering
Intro
Blue
Talk
Open →
2026-03
35:08
BSidesIA 2017 Track1: Protecting Against Advanced Attacks – Andy Thompson
BSides Iowa
Open →
2017-04
27:28
Profiling "VIP Accounts" Access Patterns in User-Centric Data Streams
Rod Soto
Joseph Zadeh
Xiodan Li
BSidesSF
· 2019
Technical
Active Directory
Detection Engineering
Kerberos
Threat Intel
Talk
Open →
2019-03
22:11
Screaming About Detection Coverage in ALLCAPS
Evan Perotti
BSides Philly
· 2025
Technical
Detection Engineering
Threat Modeling
Purple
Empirical Research
Methodology
Talk
Open →
2026-02
33:48
Demystifying Cloud Infrastructure Attacks
BSides Munich
Technical
Cloud IAM
Red
Talk
Open →
2024-11
27:26
Don't Turn Your Back on Ransomware
BSides Newcastle
· 2022
Technical
Active Directory
DFIR
Malware Analysis
Demo
Talk
Open →
2022-09
52:00
The more things change...
Bruce Potter
BSides RDU
· 2019
Keynote
Open →
2019-11
26:59
The Katz Out Of The Bag
Sándor Fehér
BSides Budabest
· 2019
Technical
Active Directory
Kerberos
Malware Analysis
Intermediary
Blue
Technical Deep-dives
Talk
Open →
2019-06
44:25
Domain Persistence- Detection, Triage, and Recovery - Joshua Prager
Joshua Prager
BSides SATX
· 2024
Technical
Active Directory
Blue
Red
Talk
Open →
2024-06
43:38
Passwords: Policies, Securing, Cracking, and More
Derek Melber
BSides Las Vegas
· 2023
Technical
Active Directory
Kerberos
Talk
Open →
2023-10
23:52
AI in CyberSecurity: How to be a 10x Engineer
Sam Wallace
BSides KC
· 2023
Technical
AI Security
Tooling
Talk
Open →
2023-10
45:28
Angie Shue - Defense in Depth for Email Security
Angie Shue
BSides Knoxville
· 2022
Technical
War Stories
Detection Engineering
Email Security
Threat Intel
Intermediary
Blue
Case Studies and Incidents Analysis
+1
Open →
2022-05
50:47
2016 - James McKinlay - What can Information Security learn from DevOps
BSides Manchester
Open →
2016-09
13:24
Turning To The Dark Side: Utilizing Offensive Techniques In Incident Response
Archie Essien
BSides London
· 2025
Technical
Active Directory
DFIR
OSINT
Threat Intel
Talk
Open →
2025-02
31:04
IAM what IAM and dats what IAM: accounts for everyone! Robots too!
Egdares Futch
BSides DC
· 2019
Technical
Cloud IAM
Talk
Open →
2019-11
23:50
"Identifying and Abusing Vulnerable Configurations in MS AD Group Policy" - Mike Loss
Mike Loss
BSides Canberra
· 2018
Technical
Active Directory
Talk
Open →
2018-08
28:55
A guide to discovering plaintext credentials in enterprise environments by Ben Burkhart
Ben Burkhart
BSides Austin
· 2024
Technical
Talk
Open →
2024-02
48:57
Hudson Bush - Goodbye Hacktive Directory: Removing Active Directory default read permissions
BSides Knoxville
Open →
2022-06
45:17
Nathan Dolan: Powershell Threat Hunting Recipes
Nathan Dolan
BSides Calgary
· 2020
Technical
Talk
Open →
2020-12
34:11
Demystifying DNS Security – Practical Steps for Reducing Exposure and Detecting Compromise
Jim Nitterauer
BSidesSF
· 2018
Technical
Talk
Open →
2018-04
56:11
I Thought I Saw a |-|4X0.-
Thomas Fischer
BSides Lisbon
· 2017
Technical
Talk
Open →
2017-11
30:55
Log In Through the Front Door: Automating Defense Against Credential Leaks
Barath Subramaniam
BSidesSF
· 2025
Technical
Detection Engineering
Threat Intel
Blue
Talk
Open →
2025-10
38:48
Password Sprays: Still a Concern?
Michael Berardi
BSides Greenville
· 2020
Technical
Talk
Open →
2020-06
37:41
Overlooked Artifacts: Enhancing Windows Forensics Analysis
Fernando Tomlinson
BSides Charlotte
· 2021
Technical
DFIR
Blue
Talk
Open →
2021-09
33:43
Operation Grand Mars: Defending Against Carbanak
Thanassis Diogos
BSides Athens
· 2017
Technical
Active Directory
DFIR
Malware Analysis
Blue
Case Studies and Incidents Analysis
Talk
Open →
2017-10
59:18
BSidesAugusta 2018 - Martin Holste - An Anatomy Of A Cloud Hack
BSides Augusta
Open →
2018-11
23:21
Skills to Build for Your Cloud Security Career
Cassandra Young
BSides Philly
· 2023
Career
Career & Soft Skills
Cloud IAM
Intro
Talk
Open →
2024-01
40:42
Red Team Engagements: How to Train Your Blue Team to Hunt Adversaries
Brad Richardson
Madhav Bhatt
BSides RDU
· 2021
Technical
Purple
Red
Talk
Open →
2021-10
29:36
Pi$$ing Off An APT - Ed Williams
Ed Williams
BSides Bristol
· 2019
Talk
Open →
2019-07
58:25
BSidesAugusta 2018 - Tim Crothers - Leveraging Deception Techniques for Strong Detection
BSides Augusta
Open →
2018-11
38:29
Fantastic Persistence: Creative backdoors & where you will NOT find them
Yossi Sassi
BSides Budabest 2025
Technical
Active Directory
DFIR
Detection Engineering
Demo
Talk
Open →
2026-03
39:40
Offensive Azure Security
Sergey Chubarov
BSides Budabest
· 2021
Technical
Cloud IAM
Red
Demo
Open →
2022-03
43:44
Bridging Clouds and Domains, Expanding Risks
Guillaume Bossiroy
BSides Limburg
· 2026
Technical
Active Directory
Cloud IAM
Blue
Red
Demo
Talk
Open →
2026-04
37:16
GF - Building Data Driven Access with the tools you have
BSides Las Vegas
Open →
2024-09
23:08
AI Agents Could Be Running Your SOC To Prevent Cyber Attacks
Keyur Rajyaguru
BSides Charm
· 2025
Technical
AI Security
Detection Engineering
Talk
Open →
2025-05
42:59
Icebreaker: From internal jumpbox to domain admin in one command
Dan McInerney
BSides SLC
· 2018
Technical
Active Directory
Kerberos
Red
Talk
Open →
2018-12
56:22
The Case for Password Auditing in Enterprise
Doug Burns
Nik Whitis
BSides Cincinnati
· 2017
Technical
Talk
Open →
2017-05
42:24
No CVE, No Problem: Uncovering Hidden Attack Paths in Active Directory
Gerardo Mejía
BSides CDMX
· 2025
Technical
Active Directory
Vulnerability Research
Advanced
Red
Case Studies and Incidents Analysis
Technical Deep-dives
Talk
Open →
2025-07
48:57
RPC Filter? I Hardly Know Her! - Evan Perotti
Evan Perotti
BSides Philly 2023
Technical
Active Directory
Network Security
Blue
Talk
Open →
2024-01
46:43
Ghosts in the Hypervisor: Dissecting TTPs Behind Ransomware Attacks on Virtualization Infrastructure
Austin Gadient
BSides Seattle
· 2026
Technical
Cloud IAM
Malware Analysis
Vulnerability Research
Red
Case Studies and Incidents Analysis
Technical Deep-dives
Talk
Open →
2026-03
1:01:16
Why Hackers Keep Winning
BSides KC
· 2019
Technical
Web AppSec
Red
Talk
Open →
2019-06
38:46
Quick Wins To Enhance Your Active Directory Security
Eric Kuehn
BSides Charleston
· 2017
Technical
Active Directory
Kerberos
Intermediary
Talk
Open →
2017-11
21:24
Insider Threat Kill Chain: Human Indicators of Compromise
Ken Westin
BSides Las Vegas
· 2014
Technical
Detection Engineering
Threat Intel
Blue
Case Studies and Incidents Analysis
Talk
Open →
2016-12
36:31
PKI - Avoiding common pitfalls - Rick Davis
BSides Peru
Open →
2022-09
50:40
Pen Testing for NOT Dummies
Alex Holden
BSides NYC
· 2023
Technical
Red
Talk
Open →
2023-06
36:47
Kerberoasting in C#: An OPSEC Perspective
Jayden Caelli
BSides Canberra
· 2025
Technical
Active Directory
Kerberos
Red
Technical Deep-dives
Talk
Open →
2025-12
29:41
Frustrating the PenTester with Active Directory - Dale Hollis
Dale Hollis
BSides KC
· 2022
Technical
Active Directory
Blue
Talk
Open →
2022-10
52:31
MITRE ATT&CK – Combining APTs, TTPs, & GRC to build realistic security programs
Alex Martirosyan
BSides Buffalo
· 2022
Technical
Talk
Open →
2022-06
46:07
AD and DNS: A Match Made in Heck
Jim Sykora
Jake Hildreth
BSides Charm
· 2023
Technical
Active Directory
Kerberos
Talk
Open →
2023-06
47:04
It's Not a False Positive, It's Alert Fatigue
Conor Osthoff
Rhiannon Dixon
BSides Peru
· 2024
Technical
Detection Engineering
Threat Intel
Case Studies and Incidents Analysis
Talk
Open →
2024-08
52:37
Building the Panopticon: Centralized Logging and Alerting With Free Tools
Matthew Gracie
BSidesROC
· 2018
Technical
Blue
Talk
Open →
2018-04
21:54
Breaking Down Walls With Windows
Alexander Klepal
BSides SATX
· 2020
Technical
Red
Talk
Open →
2020-08
52:33
Securing Active Directory & PAM for ADDS
Rohit D'Souza
Bsides CT
· 2019
Technical
Active Directory
Kerberos
Blue
Talk
Open →
2019-11
20:28
I'm not actually an SCCM admin... I just implied it
Garrett Foster
BSides PDX 2025
Technical
Active Directory
Cloud IAM
Red
Technical Deep-dives
Talk
Open →
2025-12
49:26
Please Waste My Time - Qasim Ijaz
Qasim Ijaz
BSides KC
Technical
Blue
Talk
Open →
2024-05
39:59
Everything I Know About Asset Inventory, I Learned From Taylor Swift... - Justin Scarpaci
BSides Peru
Open →
2023-08
58:20
Hackers on the Move: Tools of the Trade
Hank Fordham
BSides Calgary
Technical
Hardware Hacking
Network Security
Social Engineering
Wireless Security
Red
Demo
Talk
Open →
2024-03
56:06
You're In... Now what? A LotL discussion
BSides Dallas/Fort Worth
Open →
2024-01
48:28
Mitigating (Radio)Active Directory
Jeff Hoge
BSides Buffalo
· 2023
Technical
Active Directory
Kerberos
Blue
Talk
Open →
2023-06
20:36
Essential Logs Pyramid SIEM
Eric Goldstrom
BSides PDX
· 2023
Technical
Detection Engineering
Threat Intel
Blue
Talk
Open →
2023-10
38:19
Defending Advanced Attacks with IAM Best Practices
Andy Thompson
BSides Cincinnati
· 2017
Technical
Talk
Open →
2017-05
47:14
Navigating the Virtualization Battlefield: A Deep Dive into Hypervisor Attack Vectors
Austin Gadient
BSides NYC
· 2025
Technical
Malware Analysis
Threat Intel
Vulnerability Research
Intermediary
Red
Case Studies and Incidents Analysis
Technical Deep-dives
+1
Open →
2025-11
51:04
The Hole in Your SOC: How a compromise of your SIEM could be a disaster for your organization
Michael Music
BSides Tampa
· 2021
Technical
Active Directory
Cloud IAM
Detection Engineering
Kerberos
Threat Intel
Talk
Open →
2021-04
32:38
0Day to HeroDay: Bringing A Company From Scorched Earth to a Modern Security Organization
BSides Peru
Open →
2019-07
56:05
My Quest for Identity in a Vendor Turmoil
Nir Yosha
BSides Delaware
· 2018
Technical
Active Directory
Kerberos
Threat Intel
Talk
Open →
2018-11
25:58
Active Directory Security: Configuration and Defense
Joe Bate
Cheryl Biswas
BSides Toronto
· 2017
Technical
Active Directory
Kerberos
Intermediary
Talk
Open →
2018-01
28:57
Assumed Breach: A Better Model for Pen Testing
Mike Saunders
BSides KC
· 2019
Technical
Active Directory
Kerberos
Threat Intel
Red
Talk
Open →
2019-06
59:08
Alexander Andersson - Demystifying Cloud Infrastructure Attacks (BSidesFrankfurt 2024)
BSides Frankfurt
Open →
2025-04
45:37
Mature IAM in the Era of Work from Home
Bhuvaneshwari Natarajan
BSides Edmonton
· 2020
Technical
Talk
Open →
2020-09
45:05
Detecting the Elusive: Active Directory Threat Hunting
Sean Metcalf
BSides Charm
· 2017
Technical
Active Directory
Detection Engineering
Kerberos
Blue
Technical Deep-dives
Talk
Open →
2021-05
49:39
The Quest for Identity and Internal Threats
Nir Yosha
BSides Charleston
· 2018
Talk
Open →
2018-11
27:09
From Red to Blue: Security Strategies in Azure
Anthony Hendricks
BSides SLC
· 2023
Technical
Active Directory
Cloud IAM
Talk
Open →
2023-12
24:50
PG - Enemy at the Gate, and Beyond: Detecting and Stopping Account Takeover
Yuval Zacharia
BSides Las Vegas
· 2023
Technical
Cloud IAM
Detection Engineering
Threat Intel
Blue
Talk
Open →
2023-10
33:30
Enriching Your SOC Investigations with Insights from Active Directory
Richard Smith
BSides Buffalo
· 2023
Technical
Active Directory
Blue
Talk
Open →
2023-06
41:28
I'm A Machine, And You Should Trust Me: The Future Of Non-Human Identity
Dwayne Mcdaniel
BSides Las Vegas
· 2025
Technical
Talk
Open →
2025-12
25:35
GT - Can Data Science Deal With PAM? - Leila Powell
BSides Las Vegas
Open →
2018-09
36:13
Top 10 Mistakes Made In Active Directory That Can Lead To Being Compromised
Adam Steed
BSides Philly
· 2017
Technical
Active Directory
Talk
Open →
2017-08
21:42
Not Your Grandpa's Password Policy
Kevin T Neely
BSides Las Vegas
· 2018
Technical
Active Directory
Blue
Talk
Open →
2018-09
51:10
So you want to beat the Red Team
Cameron Moore
BSides Philly
· 2017
Technical
Blue
Talk
Open →
2017-08
25:33
RAGnarok: Assisting Threat Hunting with Local LLMs
Jun Miura
Cybelle Oliveira
BSides Las Vegas
· 2025
Technical
AI Security
Detection Engineering
Threat Intel
Blue
Demo
Talk
Open →
2025-12
54:27
A Tale of Two Powershells
Fernando Tomlinson
BSides Greenville
· 2020
Technical
Active Directory
Detection Engineering
Malware Analysis
Purple
Talk
Open →
2020-06
31:24
2018 BSides Toronto: Haydn Johnson
BSides Toronto
Open →
2018-11
49:47
Offensive Azure Security
Sergey Chubarov
BSides Cyprus
· 2021
Technical
Cloud IAM
Red
Demo
Open →
2022-06
53:07
So you wanna build a Security Lab
Gared Seats
BSides KC
· 2018
Technical
Tooling
Talk
Open →
2018-06
1:00:30
Stolen Laptops: Modern Physical Access Attacks with DMA and Firmware Exploitation
Pierre Nicolas Allard Coutu
BSides Vancouver Island
· 2025
Technical
Hardware Hacking
Physical Security
Reverse Engineering
Advanced
Blue
Red
Technical Deep-dives
+1
Open →
2026-03
22:49
IAM Very Confused: A Friendly Guide To Cloud And Modern AuthZ - Tom Cope
Tom Cope
BSides Basingstoke
· 2025
Technical
Cloud IAM
Talk
Open →
2025-09
58:39
Incident Response Fails – What we see with our clients
Michael Gough
BSides SATX
· 2021
Technical
Blue
Talk
Open →
2021-06
52:08
G1234! - My quest for (privileged) identity to own your domain - Nir Yosha
BSides Las Vegas
Open →
2019-10
43:43
Building a Sawmill: Processing Logs with Security Onion
Matthew Gracie
BSides Peru
· 2024
Technical
DFIR
Detection Engineering
Threat Intel
Blue
Demo
Talk
Open →
2024-08
22:49
Top 5 Ways I Own You Internal Network
Heath Adams
BSides Charlotte
· 2019
Technical
Talk
Open →
2019-11
29:54
Déjà Vu With Scattered Spider: Are Your SaaS Doors Still Unlocked?
Andi Ahmeti
Abian Morina
BSides Munich
· 2025
Technical
War Stories
Cloud IAM
Detection Engineering
Threat Intel
Case Studies and Incidents Analysis
Technical Deep-dives
Talk
Open →
2026-02
32:56
Dimitri Chichlo Implementation of Role-Based Access Control in a Medium-Sized Financial Institution
Dimitri Chichlo
BSides Ukraine
· 2020
Technical
Active Directory
Talk
Open →
2020-12
46:15
A-hunting We Will Go! Adventures in Endpoint Threat Detection
David Branscome
Bsides CT
· 2020
Technical
Blue
Talk
Open →
2020-11
47:21
G1234! - Enterprise Overflow: How Breached Credentials Impact Us All - Robert Paul
BSides Las Vegas
Open →
2019-10
22:58
Tom Webb - Incident Response Awakens
Tom Webb
BSides Augusta
· 2016
Talk
Open →
2016-09
34:19
IAM What IAM and Dats What IAM: Accounts for Everyone! Robots Too!
Egdares Futch
BSides DC
· 2019
Technical
Active Directory
Cloud IAM
Blue
Talk
Open →
2019-10
43:04
Incident Response: A Scalable Methodology for Cyber Security Teams
Benjamin Edelen
BSides Denver
· 2020
Technical
DFIR
Blue
Methodology
Talk
Open →
2020-10
27:58
Your Secrets Are Showing: What Hackers Can Find Online
Connor McCasland
BSides Albuquerque
· 2025
Technical
OSINT
Threat Intel
Intro
Talk
Open →
2025-08
40:25
Catching More Files - Spotting the Adversary with Honey Techniques
Matthew Gracie
BSidesROC
· 2023
Technical
Talk
Open →
2024-09
27:48
The Current State of Ransomware
Sebastian Gebhard
BSides Galway
Technical
Talk
Open →
2025-03
1:50:16
BSides Idaho Falls 2025 - Track 1 Morning
BSides Idaho Falls
· 2025
Technical
Active Directory
Detection Engineering
Threat Intel
Talk
Open →
2025-09
25:21
Mind Management
Eric Woodruff
BSidesROC
· 2023
Technical
Talk
Open →
2024-09
21:56
Introduction to Federated Authentication Systems
Matt Randall
BSides KC
· 2018
Technical
Cloud IAM
Talk
Open →
2018-06
47:47
Trust Boundary Theater: Lateral Movement in the Age of Hybrid Cloud
Ian Lin
Chance Pearson
BSides Edmonton
· 2025
Technical
Active Directory
Cloud IAM
Red
Talk
Open →
2025-10
58:32
Demystifying Managed Service Accounts
Jorge de Almeida Pinto
BSides Limburg
· 2026
Technical
Active Directory
Vulnerability Research
Talk
Open →
2026-04
33:29
Rips, Reps and Revelations: Creating Cyber Fire Drills with Atomic Red Team
Paul Michaud
BSidesROC
· 2023
Technical
Detection Engineering
Threat Intel
Purple
Talk
Open →
2024-09
39:49
BSidesCharm - 2019 - Mathieu Saulnier - BloodHound From Red to Blue
BSides Charm
Open →
2021-05
41:03
I'm A Machine, And You Should Trust Me: The Future Of Non-Human Identity
Dwayne Mcdaniel
BSides SATX
· 2021
Technical
Talk
Open →
2025-09
29:55
The (Un)Rightful Heir: My dMSA Is Your New Domain Admin
Yuval Gordon
BSides Las Vegas 2025
Technical
Active Directory
Kerberos
Vulnerability Research
Advanced
Red
Technical Deep-dives
Talk
Open →
2025-12
38:28
Identity and Security: Why Identity Belongs in Security
Eric Woodruff
BSides Calgary
Technical
Active Directory
Cloud IAM
Blue
Talk
Open →
2024-03
36:30
What You Don't Know Will Cost You: Modern AD Attack Paths & Toxic Combinations
Craig Birch
BSides Charlotte
· 2026
Technical
Active Directory
Threat Modeling
Intermediary
Red
Technical Deep-dives
Demo
Open →
2026-04
23:49
Standardizing Password Surveys
Per Thorsheim
BSides Las Vegas
Research
Talk
Open →
2024-09
24:28
When Programs Go Rogue: Identity Sprawl in the Grid
Nick Newell
BSides Charlotte
· 2026
Technical
Active Directory
Cloud IAM
Intermediary
Blue
Talk
Open →
2026-04
39:03
Demand More from Your Endpoint
Sean Weiss
BSides St. John's
Technical
Talk
Open →
2025-05
45:47
Stephane Asselin - Security Frameworks and Zero Trust
BSides St. John's
Open →
2025-05
