2024-08-06 –, Ballroom
Now in its seventh iteration, the Cloud Forensics Workshop teaches students new to the industry or individuals interested in cross-training to learn core concepts about digital forensics in the Cloud. The latest version now focuses on both labs and discussions about how AI, machine learning, automation, IoT, and containers all play a key role for digital forensics in the Cloud. This will be a two-day training session, with Day One covering the labs and Day Two is an all-day CTF competition to test students' understanding and comprehension of the material.
Now in its seventh iteration since the initial launch, the Cloud Forensics Workshop has been a regular feature at multiple security conferences across the country where students new to the industry or individuals interested in cross-training learn core concepts about digital forensics in the Cloud. The latest version of this training session - dubbed the "AI Edition" - will be a two-day training session. Day One focuses on how artificial intelligence and automation can assist with a digital forensic investigation; including securing a compromised account, creating the necessary artifacts for forensic analysis; log indexing, correlation, and analysis to help identify suspicious activity or other unusual behaviors to generate a timeline of events. The workshop will also feature plenty of group discussions on recent advancements in forensic automation, how the Cloud has evolved from large-scale virtual servers to smaller scalable containers, how IoT devices have extended the logical boundaries of the Cloud, and key similarities and differences between the three major Cloud Service Providers. There will also be hands-on labs where students can learn more about automating tasks, mirroring and capturing packet data, and open-source tools and techniques that are commonly used in the field. Attendees will be given the opportunity to download sample data from a Cloud account prior to the start of the workshop to help better understand how to leverage these tools and techniques.
Day Two of the training will feature an all-day CTF competition to test students' understanding and comprehension of what they learned, as they form teams to take on forensics puzzles of varying difficulty in a race against each other and against time, with prizes to be earned.
Kerry Hazelton - better known as "Professor Kilroy" - has been involved in the technology and security industry for twenty-five years crafting his own version of "Protection Against the Dark Arts" with an extensive knowledge of information systems, data center operations, Cloud computing, digital forensics, and incident response. Ever the security enthusiast and a sucker for movie references, combined with a deep passion for teaching and mentoring; Kerry created the Cloud Forensics Workshop and CTF Challenge in 2017, which is a technical workshop that focuses on learning about the science of Cloud forensics and its real-world applications, followed by a Capture-the-Flag competition to gauge his students’ comprehension and critical-thinking skills by solving multiple forensic puzzles in a race against each other within the allotted amount of time.
He can be found posting his random thoughts on gaming, hacking, or life in general via X under the handle of @ProfKilroy.