Last week I got to go to one of my all-time favorite #BSides
#BSidesAustin 2024!
So many awesome sessions and conversations. I could not see everything but here are some notes:
https://buff.ly/3OPfBS1

Cyber Resilience for 911 Emergency Services
Dennis Maldonado

#BSidesAustin
#BSides

Intelligent Response: Merging Threat Intelligence, MDR, and Incident Response for Maximum Impact
Sam Mayers
Jacob Wellnitz
Kelsey O’Connell

#BSidesAustin
#BSides

ended up in 6th place at the #BSidesAustin CTF by the time I had to leave for the airport. Not bad considering I haven't actively CTF'd in a long time. This old fart still has a few skills.

All these so-called sophisticated attacks… Can we really detect them?
Michael Gough

#BSidesAustin
#BSides

Open-source Secret Scanner: n0s1
Marcelo Sacchetin

#BSidesAustin
#BSides

Pipeline Pandemonium: How to Hijack the Cloud and Make it Rain
Blake Hudson

#BSidesAustin
#BSides

Security Gaps in the Linux Packaging Supply Chain
Brendan Early

#BSidesAustin
#BSides

Lots of interesting ideas at #BSidesAustin on making sure your AI inputs and outputs aren't biased/racist/illegal ... though I wonder how we apply those to AIs that are *required* to be literal with input/output content. For instance, if I'm translating a legal deposition, I don't want the AI re-writing it so it won't run afoul of what's an otherwise sensible and well-intentioned content policy.

Salesforce Snafus: Unveiling and Exploiting Security Misconfigurations Using Commonly Used Widgets
Jessa Gegax

#BSidesAustin
#BSides

Day 2 of #BSidesAustin starting with
Encrypting Your Infrastructure Without Getting Fired
Matt Moen

#BSides

Yo #BSidesAustin stop by the Dropzone AI table to say hi on Day 2. Yesterday, I learned about the IBM campus that turned into The Domain. Also, a lot about the cluster of chip design centers that is centered in Austin. Pic of BBQ tonight. 🥰

The final talk of day 1 of #BSidesAustin

Know no evil, speak no evil, do no evil
Bobby Kuzma

#BSides

Past, Present and Future of Automatic Code Remediation
Arshan Dabirsiaghi

#BSidesAustin
#BSides

Hello #BSidesAustin humans and other attendees! The slides (with speaker notes and bonus content) from my paper "From Log4j to XZ: Unsolvable Issues in the Software Supply Chain" are available in my github repo: https://github.com/pvnovarese/2024-12-log4j-to-xz

Selling Security to Executives
Gideon Rasmussen

#BSidesAustin
#BSides

CloudTail: Making Heads or Tails of Selectively Retaining Multi-Cloud Logs (w/o a SIEM!)
Ela Dogjani

#BSidesAustin
#BSides

From log4j to xz - Unsolvable Issues in the Software Supply Chain
Paul Novarese

#BSidesAustin
#BSides

Fusing Reverse Shells And Kernel Exploits For Fun & Profit
Aleksa Zatezalo

#BSidesAustin
#BSides

The Whole is more Dangerous than the Sum of its Parts
Damon “ch3f” Small

#BSidesAustin
#BSides