Black Hat Guide for Conference Veterans
Black Hat is back at the Mandalay Bay in Las Vegas this August 5th-10th! With four days of specialized trainings (Aug. 5th-8th) and two days of the main conference (Aug. 9th-10th), long-time attendees may be familiar with Black Hat’s 100+ briefings, open-source tool demos in Arsenal, and networking/social events. As such, Crosswire is focusing on the “new” this year, writing about new programs/features, talks, and non-conference activities in Vegas you may not have tried (brought to you by this Las Vegas native ◡̈).
New program: Pentester Certification (August 5th-8th)
This year Black Hat has launched its own certification program: the Black Hat Certified Pentester (BCPen). Partnered with The SecOps Group, the “Certified Pentester” program is a full-day practical exam that covers pentesting topics (namely web and infrastructure hacking) in a Capture The Flag (CTF) style Hackathon. Coming out at $2000, you can take this exam anytime August 5th-8th, 9 am-5 pm (a complete exam syllabus can be found here).
New features: Business Hall (August 9th-10th)
One of 2023's latest additions, the Community Lounge, will center on diverse sessions, covering topics pertaining to women and other underrepresented groups within cybersecurity. The lounge aims to address the challenges underrepresented groups encounter in infosec and discuss solutions on how the industry can foster a more diverse and inclusive community.
The Autonomous Arcade will offer interactive hacking challenges for participants interested in learning about hacking and controlling autonomous systems—featuring a drone hacking challenge workshop. Challenges will be run throughout the day on a first-come, first-serve basis with hardware provided and prizes awarded to top challengers.
Bricks & Picks
Bricks & Picks will serve as an activity space where attendees can indulge in their playful, creative, and curious sides with plastic building bricks and physical locks to pick. Experts in these domains (like the winner of LEGO Masters, BrickinNick) will lead this area, showcasing competitions, hands-on demonstrations, a Black Hat Gallery for attendee creations, and more.
Meet & Greet Sessions
This year, attendees will have the opportunity to engage with industry experts through new Meet & Greet Sessions. Attendees will be able to ask questions to speakers from the sessions, introduce themselves to a Review Board member, or capture a photo with a new connection (a full schedule for the Meet & Greets can be found here).
New talks/briefings: Resilience and Identity Security (August 9th-10th)
Thursday, August 10 | 2:30 pm-3:00 pm (Oceanside D, Level 2)
In this interactive discussion, Zane Lackey (former CISO of Etsy and General Partner at Andreessen Horowitz—who led Crosswire’s $6 million seed round) will share his experiences and answer questions about transitioning from a security engineer/CISO to a founder to ultimately a venture capitalist in the cybersecurity industry. The discussion takes place at the inaugural Black Hat Entrepreneur Micro Summit, where attendees can inquire about raising capital, founding a cybersecurity startup, building a successful team, and overcoming challenges as entrepreneurs in a rapidly changing industry.
Wednesday, August 9 | 11:20 am-12 pm (Oceanside A, Level 2)
Kelly Shortridge (Senior Principal at Fastly) returns to Black Hat to give a talk on how to outmaneuver attackers by becoming more like them: “nimble, empirical, and curious.” This talk will cover a new paradigm for systems defense rooted in resilience as well as “the principles, practices, patterns, and other opportunities that help us accelerate our operational tempo, pursue design-based solutions, seep ourselves in systems thinking, and identify tangible success outcomes.”
Wednesday, August 9 | 2:30 pm-3:00 pm (Islander FG, Level 0)
In this talk, Marco Squarcina (Senior Scientist, TU Wien) and Pedro Adão (Associate Professor, Instituto Superior Técnico, Universidade de Lisboa) will focus on the real-world security implications of cookie integrity issues and show how seemingly robust security mechanisms can be bypassed, leaving web applications vulnerable to session integrity attacks (e.g., session fixation, CORS, etc.). They’ll conclude with a deep dive into how to mitigate these attacks, with coordinated disclosure by the affected vendors. Watch the two talk more about their plans for the talk in the podcast video above.
Wednesday, August 9 | 3:20 pm-4:00 pm (South Seas AB, Level 3)
This session will consist of three “microtalks” moderated by Sherri Davidoff (CEO, LMG Security):
Reducing Your Team’s Energy Costs: An Inclusion Microtalk by Andy Ellis (Author, Advisory CISO & Operating Partner, Orca Security & YL Ventures) discusses how inclusion reduces the energy cost people pay just to exist in a space, making it critical for building a good culture and turning more energy into more value.
Breaking Barriers: a Data-Centric Approach by Meghan Jacquot (Security Engineer, Inspectiv) and Aastha Sahni (Azure Technical Trainer, Microsoft) explores diversity in cybersecurity and how its measured, particularly the barriers that exist around mindsets/unconscious bias and how to break down those barriers with new ways to measure and validate changes in diversity.
Microaggressions and Turnover: Three Ways to Reduce Quiet Quitting by Olivia Rose (CISO and Owner, Rose CISO Group) details three actionable and realistic recommendations you can start implementing today at your organization to begin to address the retention problem of diverse employees due to microaggressions.
Thursday, August 10 | 10:20 am-11:00 am (South Pacific F, Level 0)
John Miller (Head of Mandiant Intelligence Analysis, Google Cloud) and Ron Graf (Data Scientist, Google Cloud) collaborate on this talk to demonstrate how LLMs can enhance security operations, quickening and enhancing cybersecurity analysis. The emphasis will be on integrating the impacts of LLM into security leadership's decisions regarding the development and advancement of CTI programs.
Thursday, August 10 | 11:20 am-12:00 pm (Mandalay Bay H, Level 2)
This presentation will provide the most detailed public presentation ever of the February 2022 “KA-SAT event” wherein Viasat's KA-SAT network was attacked, causing partial outages for thousands of users in Ukraine and tens of thousands of users elsewhere in Europe. The presentation will detail the attack as well as the National Security Agency's Cybersecurity Collaboration Center (NSA CCC)’s response. Viasat and the NSA will share lessons learned and advise on collaborative responses by commercial and government entities to future attacks.
Thursday, August 10 | 1:30 pm-2:10 pm (Oceanside A, Level 2)
Join Rich Harang (Principal Security Architect, Nvidia), Ariel Herbert-Voss (CEO and Founder, RunSybil), Ram Shankar Siva Kumar (Data Cowboy, Microsoft; Harvard), and Nathan Hamiel (Senior Director of Research, Kudelski Security) for a candid discussion on the real-world effects of AI on security professionals. They'll explore the influence of generative AI on the security industry and its associated risks, the realities, and essential insights for navigating the path forward.
New non-conference activities: What To Do In Vegas
If you’re into nightlife but aren’t looking to get your ears blown out by bass on a weekday evening, in the Cosmo, there’s an unassuming “Barbershop Cuts & Cocktails” that opens to a 1920s-themed speakeasy when you walk through the janitor’s closet door (pictured below). This Prohibition lounge, bar, and music venue hosts a variety of events (Tuesday Karaoke, Wild West Wednesdays, All Request Sundays, and live music nightly) and provides craft cocktails and beers in addition to its extensive whiskey collection. You can make reservations for the saloon here (and remember to mind their business casual Appearance Code!).
Hike (before sunrise/after sunset or in an air-conditioned car, please—for your health) the trails at Red Rock Canyon
A 20-minute drive west of The Strip is Red Rock Canyon, a 195,819-acre National Conservation Area within the Mojave Desert. There are 31 main hiking trails, with the 2.3-mile Calico Tanks Trail being the favored moderate hike. For experienced hikers, the 4.6-mile Turtlehead Peak Trail is the top choice, while beginners often prefer the 2.4-mile Pine Creek Canyon Trail. For those looking to enjoy the views while beating the heat, there’s a 13-mile Scenic Drive that allows visitors to explore the canyon from their vehicle or bicycle, with multiple scenic stops and trailheads throughout. The variety of trails, views, flora, and fossils/petroglyphs makes Red Rock one of the most unique places in Vegas.
💡: The highs are looking to be about 105-110°F this week (peaking in the afternoon), please be mindful of the heat (and visit early or late in the day if you can). If you’re hiking, make sure you’re carrying plenty of water, snacks, and sunscreen/sun protection; if you’re driving, make sure your tank is full before you leave!
The Grand-Champion Aces play the Washington Mystics at 7 pm on Friday (8/11) and the Atlanta Dream at 6 pm on Sunday (8/13) after the conference ends. With tickets as low as $12 and their stadium being attached to the Convention Center where Black Hat’s taking place, catching a game is one of the most convenient and fun post-conference activities this week.
💡Alternative: If sports are your thing but you’re heading out right when the conference ends, check out Circa for the largest sportsbook in the world with a three story screened wall and 1000-person viewing capacity.
Area 15 is an experiential entertainment complex that blends immersive art installations, physical activities, and interactive exhibits with a traditional food/drink/shopping venue (that’s also ages 21+ after 9 pm). From Meow Wolf’s “Omega Mart” to axe throwing and indoor golfing to an immersive tour of a working distillery, this hub of attractions and exhibitions is free to visit (just book a timed entry pass) with a variety of “Experience Passes” for purchase here.
I would be remiss not to mention Vegas’s newest (and possibly most peculiar) addition: The Sphere. The spherical entertainment arena attached to The Venetian Resort is set to open on September 29th (with U2 performing a 25-show residency), but in the meantime, they’ve been using their 581,000 square feet of LEDs to project… interesting visuals. With its distinction of having the largest LED wall and being the largest spherical building in the world, just being able to say you witnessed this attraction makes it worthwhile.
The Strip can be great, but it can also be… a lot. In fact, a survey conducted by the Las Vegas Convention and Visitors Authority indicates that over half of locals tend to skip The Strip altogether because of cost and crowds (for New Yorkers’ reference: it’s our equivalent of Times Square).
Instead, they head to Downtown Las Vegas: the birthplace of neon lights and vintage casinos in Vegas (including the oldest, the Golden Gate Hotel and Casino, from 1906). The Arts District (complete with the Mob and Neon Museum) and Container Park (an open-air shopping center constructed out of recycled shipping containers—with a 40-foot-tall fire-throwing mantis outside) are also here, and at its heart lies the “Fremont Street Experience.” This five-block area house a 12-story slot-machine-Godzilla-inspired zipline and is covered by a lighted canopy. From 6 pm until midnight, the street is enveloped in the “Viva Vision Light Show” containing 24 million LED lights and 550,000 watts of sound in addition to live music. Notably, Fremont Street is brimming with bars and restaurants, and most are significantly cheaper and less crowded than those on The Strip.
💡: For an even deeper look at which bars would suit your night out, check out this guide to the “Best Bars in Downtown Vegas.”
Whether this is your 1st or 21st time at Black Hat, we hope these tips help you weather what can be a jam-packed and intense week (that will probably leave you exhausted until those Black Hat 2024 parties). If you’re interested in the future of identity security, particularly Identity Threat Detection and Response (ITDR), visit Crosswire at Booth #SC521 in Startup City to chat with our founders and team 1:1 to learn the latest. We hope to see you there (reach out and schedule some time with us at email@example.com)!
Want to learn more afterward? Enter our raffle (located at our booth) for a signed copy of Start-Up Secure by Chris Castaldo to learn how to start and continue an identity security dialogue at your company post-conference. Packed with actionable insights from Chris’s decades of experience in the field, it’s a must-have for any security practitioner!
To stay up to date with Crosswire and learn how to secure your org against identity threats, take our quiz to understand your security maturity level/how Crosswire can help you level up your security stack and subscribe to our blog below!
More from our blog
CISOs Chris Castaldo and Tanner Randolph share insights on security maturity and identity in the enterprise.
False positives are a huge problem in security: see what Crosswire is doing to prevent them and mitigate their effects.
We've made the modern identity stack entirely too convoluted and broken, but not for the reasons you think.
How are you protecting your accounts before an incident can occur (or slowing an incident down before it really ramps up)?
This is Solution 2: Remediate of a two-part series on how to detect and remediate evolving identity threats.
This is Solution 1: Detect of a two-part series on how to detect and remediate evolving identity threats.
Explore the historical use, modern approaches, and future applications of AI in detection and response (D&R).
If you’re looking for the right time to join a high-risk, high-reward venture, we’d argue that there’s never been a better opportunity.
IT security audits can be a pain for everyone involved: check out our solutions to make this auditing season just a little bit easier.
RBAC lacks sophistication and flexibility, failing to address the access needs of the modern company.
Who owns identity at your org? Identity is (and should be treated as) a co-owned problem between security and IT.
Yep, you heard that right; we at Crosswire believe that your Okta groups should be as empty as possible.
Crosswire, and its co-founders Johnny and Nick, are building the future of enterprise identity in new and exciting ways.
The theme for 2023’s RSA Conference™ is “Stronger Together.” When info security is more important than ever, so is collaboration.
It’s no secret that your IT organization is crucial to your company. But are they getting all of the resources they need?
Why cybersecurity is more crucial than ever and what you can do to make your organization more secure, no matter your role.
Five significant ways to improve your workflows with automation and get more results than your resources permit.
Crosswire’s technical usability guide to Okta Lifecycle Management (LCM), from onboarding to offboarding.
Subscribe to our blog
Get Crosswire's security insights delivered straight to your inbox. No frills, no spams, unsubscribe anytime!