Friday, June 17, 2016 “InfoSec’s Inferno: the Nine Circles of Collaborative Testing Hell” Bryce Kunz

Domenico di Michelino Dante and His Poem (1465) fresco, in the dome of the church of Santa Maria del Fiore in Florence (Florence's cathedral). Dante Alighieri is shown holding a copy of his epic poem The Divine Comedy. He is pointing to a procession of sinners being lead down to the circles of Hell on the left. Behind him are the seven terraces of Purgatory, with Adam and Eve representing Earthly Paradise on top. Above them, the sun and the moon represent Heavenly Paradise, whilst on the right is Dante's home city of Florence. The illustration of Florence is self referencial, depicting the recently completed and much celebrated cathedral dome inside which the fresco is painted.

Domenico di Michelino Dante and His Poem (1465) fresco, in the dome of the church of Santa Maria del Fiore in Florence (Florence’s cathedral).
Dante Alighieri is shown holding a copy of his epic poem The Divine Comedy. He is pointing to a procession of sinners being lead down to the circles of Hell on the left. Behind him are the seven terraces of Purgatory, with Adam and Eve representing Earthly Paradise on top. Above them, the sun and the moon represent Heavenly Paradise, whilst on the right is Dante’s home city of Florence. The illustration of Florence is self referencial, depicting the recently completed and much celebrated cathedral dome inside which the fresco is painted.

InfoSec has become a Divine Comedy with competing sub factions profiting off of the blatant failures of their peers. With IR firms delighting in AV failures and red teams plundering on IT’s complex chaos, it’s time to put our differences aside and “hug it out” through collaborative testing exercises specifically designed to increase the cost of exploiting information systems by improving every teams ability to detect and prevent intrusions.

This talk covers the latest techniques for organizing collaborative testing engagements, as well as my detailed nine circles of collaborative testing methodology specifically designed to engage all teams throughout the testing process to most effectively improve each team’s unique skill sets. I will walk you through the various testing methodologies we have performed, highlighting the pitfalls that where discovered with each evolution to help you better understand why our current methodology will avoid many of these shortcomings and help you most effective improve each team’s skill sets.

When June 17th 6:30
801 Labs
353 E 200 S, Salt Lake City, UT (edit map)
http://www.meetup.com/801labs/events/230563062/

Posted in Past Events