BruCON 0x10 Keynote Notes

During the BruCON 0x10 keynote session, Michael Sikorski (@mikesiko), the CTO of Unit 42 at Palo Alto Networks, beautifully presented why the educational aspect in terms of participation and delivery of workshops/training is of great importance for the development and building of strong cyber teams:

• People are going for training sessions to learn new things or to see other people's approaches that open their minds so they learn from it as well

• As a trainer, your skills and knowledge grow up every time you deliver a training, because of the questions arrised and open discussions you have

• Teaching allows to see different perspectives on the same problems/areas which complements your knowledge significantly

• Education was embedded in everything that Flare's Team was doing. Everybody had to teach. Mentoring program for every member of the team was mandatory

• Throwing me another set of 1000 IOCs/hashes does not change anything, learn from them in the style of Active Defense

• Through education, you can bring the unity to your team => for sure you know something the other do not know

Thank you, Michael, for reminding me why I love what I do and why it has a great power => the combo of professional services + active research + education.

----

Learn Linux attack, detection, and live forensics based on hands-on analyses of exploits, user space/kernel space Linux rootkits, C2 frameworks, and offsec tools. Create low-level Linux attack paths, know better Linux internals, improve your Linux detection, understand the need for Linux telemetry, and stay prepared for Linux threats. 90 days of PurpleLabs Access included + unlimited access to materials + updates.

https://edu.defensive-security.com/linux-attack-live-forensics-at-scale