BEGIN:VCALENDAR
VERSION:2.0
PRODID:-//pretalx//pretalx.com//bsides-canberra-2025//speaker//WLSUJB
BEGIN:VTIMEZONE
TZID:AEST
BEGIN:STANDARD
DTSTART:20000326T040000
RRULE:FREQ=YEARLY;BYDAY=-1SU;BYMONTH=3;UNTIL=20050326T170000Z
TZNAME:AEST
TZOFFSETFROM:+1100
TZOFFSETTO:+1000
END:STANDARD
BEGIN:STANDARD
DTSTART:20060402T040000
RRULE:FREQ=YEARLY;BYDAY=1SU;BYMONTH=4;UNTIL=20060401T170000Z
TZNAME:AEST
TZOFFSETFROM:+1100
TZOFFSETTO:+1000
END:STANDARD
BEGIN:STANDARD
DTSTART:20070325T040000
RRULE:FREQ=YEARLY;BYDAY=4SU;BYMONTH=3;UNTIL=20070324T170000Z
TZNAME:AEST
TZOFFSETFROM:+1100
TZOFFSETTO:+1000
END:STANDARD
BEGIN:STANDARD
DTSTART:20080406T040000
RRULE:FREQ=YEARLY;BYDAY=1SU;BYMONTH=4
TZNAME:AEST
TZOFFSETFROM:+1100
TZOFFSETTO:+1000
END:STANDARD
BEGIN:DAYLIGHT
DTSTART:20000827T030000
RRULE:FREQ=YEARLY;BYDAY=4SU;BYMONTH=8;UNTIL=20000826T170000Z
TZNAME:AEDT
TZOFFSETFROM:+1000
TZOFFSETTO:+1100
END:DAYLIGHT
BEGIN:DAYLIGHT
DTSTART:20011028T030000
RRULE:FREQ=YEARLY;BYDAY=-1SU;BYMONTH=10;UNTIL=20071027T170000Z
TZNAME:AEDT
TZOFFSETFROM:+1000
TZOFFSETTO:+1100
END:DAYLIGHT
BEGIN:DAYLIGHT
DTSTART:20081005T030000
RRULE:FREQ=YEARLY;BYDAY=1SU;BYMONTH=10
TZNAME:AEDT
TZOFFSETFROM:+1000
TZOFFSETTO:+1100
END:DAYLIGHT
END:VTIMEZONE
BEGIN:VEVENT
UID:pretalx-bsides-canberra-2025-7SJUVG@pretalx.com
DTSTART;TZID=AEST:20250927T140000
DTEND;TZID=AEST:20250927T145500
DESCRIPTION:With the increasing incidence of critical vulnerabilities on ne
 xt generation firewalls\, vendors and their customers face significant cha
 llenges in keeping up with firmware patches\, mitigating exploitation risk
 s\, and safeguarding their edge devices and organizations.\n\nAs an advers
 ary\, if you land on a next generation firewall\, what could you do next t
 o further compromise the target environment?\n\nThis talk addresses that q
 uestion by examining how attackers can exploit weaknesses and overlooked f
 eatures in these firewalls for maximum impact. A little-known detail is re
 visited: Palo Alto’s default master key (often left unchanged) can be le
 veraged to decrypt stored configuration secrets\, exposing credentials and
  cryptographic keys previously thought to be secure. The speaker demonstra
 tes how a compromised NGFW can be transformed from a security appliance in
 to a valuable platform for credential harvesting\, internal reconnaissance
 \, and lateral movement. Beyond extracting sensitive data\, an adversary c
 an abuse built-in functionality to move deeper into the environment in way
 s most defenders have never considered. The speaker also details how the c
 lientless VPN feature can be abused for internal network mapping\, and how
  a threat actor may inject malicious code into VPN login portals to harves
 t credentials.\n\nThe strategies and techniques described in this talk are
  intended to equip both offensive and defensive security professionals wit
 h new approaches for targeting and protecting next generation firewalls. U
 nderstanding how perimeter devices can be subverted\, and adopting proacti
 ve measures to harden and monitor them\, is critical to maintaining the in
 tegrity of modern network environments.
DTSTAMP:20260603T234325Z
LOCATION:Main Track
SUMMARY:Panning for Gold - A Hacker's Guide to Next Generation Firewalls - 
 Matthew Flanagan
URL:https://pretalx.com/bsides-canberra-2025/talk/7SJUVG/
END:VEVENT
END:VCALENDAR