BEGIN:VCALENDAR
VERSION:2.0
PRODID:-//pretalx//pretalx.com//bsideslv24//talk//QBCZUY
BEGIN:VTIMEZONE
TZID:PST
BEGIN:STANDARD
DTSTART:20001029T030000
RRULE:FREQ=YEARLY;BYDAY=-1SU;BYMONTH=10;UNTIL=20061029T100000Z
TZNAME:PST
TZOFFSETFROM:-0700
TZOFFSETTO:-0800
END:STANDARD
BEGIN:STANDARD
DTSTART:20071104T030000
RRULE:FREQ=YEARLY;BYDAY=1SU;BYMONTH=11
TZNAME:PST
TZOFFSETFROM:-0700
TZOFFSETTO:-0800
END:STANDARD
BEGIN:DAYLIGHT
DTSTART:20000402T030000
RRULE:FREQ=YEARLY;BYDAY=1SU;BYMONTH=4;UNTIL=20060402T110000Z
TZNAME:PDT
TZOFFSETFROM:-0800
TZOFFSETTO:-0700
END:DAYLIGHT
BEGIN:DAYLIGHT
DTSTART:20070311T030000
RRULE:FREQ=YEARLY;BYDAY=2SU;BYMONTH=3
TZNAME:PDT
TZOFFSETFROM:-0800
TZOFFSETTO:-0700
END:DAYLIGHT
END:VTIMEZONE
BEGIN:VEVENT
UID:pretalx-bsideslv24-QBCZUY@pretalx.com
DTSTART;TZID=PST:20240806T103000
DTEND;TZID=PST:20240806T190000
DESCRIPTION:Email remains the #1 initial access vector for commodity malwar
 e and nation state actors. Historically\, tackling email-based threats has
  been considered the purview of black-box vendor solutions\, with defender
 s having limited scope (or tooling!) to swiftly and effectively respond to
  novel offensive tradecraft.\n\nIn this training\, attendees will be given
  detailed insight into the latest techniques used to deliver prevalent mal
 ware strains\, including Pikabot and IcedID\, and will hunt through email 
 data to identify this malicious activity\, developing rules to detect and 
 block these attacks.\n\nInitially attendees will be introduced to the foun
 dational technologies that enable threat hunting and detection engineering
  in the email domain\, before being given access to the email data of a fi
 ctitious company seeded with benign and real-world attack data.\n\nAttende
 es will be guided through the rule creation process\, utilizing free and o
 pen detection engines including Sublime and Yara\, and will be introduced 
 to the signals that can be used to craft high-fidelity rules\, including s
 entiment analysis\, domain age\, and attachment analysis. Having completed
  the training\, attendees will have a strong understanding of the tools an
 d techniques at their disposal to defend their organizations from all mano
 r of email threats.
DTSTAMP:20260611T042418Z
LOCATION:Pearl
SUMMARY:Email Detection Engineering and Threat Hunting - Josh Kamdjou
URL:https://pretalx.com/bsideslv24/talk/QBCZUY/
END:VEVENT
END:VCALENDAR