{"title":"DEF CON 34 Friday, Weekend, and 4-day classes","description":"","products":[{"product_id":"influence-operations-tactics-defense-and-exploitation-las-vegas-2025","title":"Greg Conti \u0026 Tom Cross – Influence Operations: Tactics, Defense, and Exploitation - DCTLV2025 **Saturday\/Sunday Training**","description":"\u003cp dir=\"ltr\"\u003e\u003cspan\u003e\u003cstrong\u003e**Please note: This two-day training will be offered on Saturday and Sunday (August 9-10). Participants will receive a DEF CON Human Badge with their registration*\u003c\/strong\u003e*\u003c\/span\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eName of Training\u003c\/strong\u003e\u003cspan\u003e\u003cstrong\u003e:\u003c\/strong\u003e Influence Operations: Tactics, Defense, and Exploitation\u003cbr\u003e\u003c\/span\u003e\u003cstrong\u003eTrainer(s)\u003c\/strong\u003e\u003cspan\u003e\u003cstrong\u003e:\u003c\/strong\u003e \u003c\/span\u003e\u003cspan\u003eGreg Conti and Tom Cross \u003cbr\u003e\u003c\/span\u003e\u003cstrong\u003eDates\u003c\/strong\u003e\u003cspan\u003e\u003cstrong\u003e:\u003c\/strong\u003e August 9-10, 2025\u003cbr\u003e\u003c\/span\u003e\u003cspan\u003e\u003cstrong\u003eTime:\u003c\/strong\u003e \u003c\/span\u003e\u003cspan\u003e8:00 am to 5:00 pm PT\u003cbr\u003e\u003c\/span\u003e\u003cstrong\u003eVenue\u003c\/strong\u003e\u003cspan\u003e\u003cstrong\u003e:\u003c\/strong\u003e Las Vegas Convention Center\u003cbr\u003e\u003c\/span\u003e\u003cstrong\u003eCost\u003c\/strong\u003e\u003cspan\u003e: $2,400\u003c\/span\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eCourse Description: \u003c\/strong\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eIt is indeed all about the information. Information is power—and those who control it hold the reins. This course dives deep into the topic of \u003c\/span\u003e\u003cspan\u003eInfluence Operations (IO)\u003c\/span\u003e\u003cspan\u003e, teaching you how adversaries manipulate, deceive, and control the flow of information to achieve their objectives. From destabilizing governments to swaying elections and ruining careers, IO is a tool used by state and non-state actors alike. The question is, how do you defend against it?\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eIn this fast-paced, hands-on course, we’ll break down how IO is planned, executed, and defended against. You’ll gain the skills and knowledge to not only recognize and counteract these operations but to protect yourself, your organization, and even your country from their impact.\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eWhat You'll Learn:\u003c\/span\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli dir=\"ltr\" aria-level=\"1\"\u003e\n\u003cp dir=\"ltr\" role=\"presentation\"\u003e\u003cspan\u003eIO Strategies \u0026amp; Tactics:\u003c\/span\u003e\u003cspan\u003e From the basics to advanced techniques, understand how influence operations shape public opinion, corporate behavior, and political landscapes.\u003c\/span\u003e\u003c\/p\u003e\n\u003c\/li\u003e\n\u003cli dir=\"ltr\" aria-level=\"1\"\u003e\n\u003cp dir=\"ltr\" role=\"presentation\"\u003e\u003cspan\u003ePsychological Operations (PSYOP):\u003c\/span\u003e\u003cspan\u003e Explore the manipulation of biases, emotions, perceptions, and actions to control outcomes.\u003c\/span\u003e\u003c\/p\u003e\n\u003c\/li\u003e\n\u003cli dir=\"ltr\" aria-level=\"1\"\u003e\n\u003cp dir=\"ltr\" role=\"presentation\"\u003e\u003cspan\u003eDeception and Counterdeception:\u003c\/span\u003e\u003cspan\u003e Learn how deception campaigns are crafted, and how to spot and disrupt them.\u003c\/span\u003e\u003c\/p\u003e\n\u003c\/li\u003e\n\u003cli dir=\"ltr\" aria-level=\"1\"\u003e\n\u003cp dir=\"ltr\" role=\"presentation\"\u003e\u003cspan\u003eMilitary Doctrine \u0026amp; TTPs:\u003c\/span\u003e\u003cspan\u003e Understand military frameworks for IO and adapt them for defending against threats.\u003c\/span\u003e\u003c\/p\u003e\n\u003c\/li\u003e\n\u003cli dir=\"ltr\" aria-level=\"1\"\u003e\n\u003cp dir=\"ltr\" role=\"presentation\"\u003e\u003cspan\u003eIncident Response \u0026amp; Defensive Tactics:\u003c\/span\u003e\u003cspan\u003e Equip yourself with practical strategies for detecting and defending against IO campaigns targeting individuals and organizations.\u003c\/span\u003e\u003c\/p\u003e\n\u003c\/li\u003e\n\u003cli dir=\"ltr\" aria-level=\"1\"\u003e\n\u003cp dir=\"ltr\" role=\"presentation\"\u003e\u003cspan\u003eCrafting Messages \u0026amp; Understanding Propagation:\u003c\/span\u003e\u003cspan\u003e Learn the art of creating and spreading messages to achieve specific goals—while also learning how to counter malicious ones.\u003c\/span\u003e\u003c\/p\u003e\n\u003c\/li\u003e\n\u003cli dir=\"ltr\" aria-level=\"1\"\u003e\n\u003cp dir=\"ltr\" role=\"presentation\"\u003e\u003cspan\u003eReal-World Case Studies:\u003c\/span\u003e\u003cspan\u003e From deceptive news to social media manipulation, analyze recent IO campaigns to understand their impact and develop defensive strategies.\u003c\/span\u003e\u003c\/p\u003e\n\u003c\/li\u003e\n\u003cli dir=\"ltr\" aria-level=\"1\"\u003e\n\u003cp dir=\"ltr\" role=\"presentation\"\u003e\u003cspan\u003eLive IO Campaign Contest:\u003c\/span\u003e\u003cspan\u003e Compete in a live “best IO campaign” contest, applying the techniques you’ve learned during the course to test your strategies.\u003c\/span\u003e\u003cspan\u003e \u003c\/span\u003e\u003c\/p\u003e\n\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eBy the end of the course, you’ll not only have a deep understanding of how IO is executed, but you'll also walk away with practical tools to defend against these attacks. You’ll learn how to recognize the signs of manipulation, understand the motivations behind IO, and develop countermeasures to protect against them.\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eIn a world where information is weaponized, knowing how to protect yourself is no longer optional. Whether you’re securing yourself, an organization, protecting a political campaign, or defending a nation, this course is your toolkit for navigating the complex and increasingly dangerous world of influence operations.\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eCourse Outline: \u003c\/strong\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eDay 1\u003c\/span\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli dir=\"ltr\" aria-level=\"1\"\u003e\n\u003cp dir=\"ltr\" role=\"presentation\"\u003e\u003cspan\u003eSurvey of influence operations over time\u003c\/span\u003e\u003c\/p\u003e\n\u003c\/li\u003e\n\u003cli dir=\"ltr\" aria-level=\"1\"\u003e\n\u003cp dir=\"ltr\" role=\"presentation\"\u003e\u003cspan\u003eInfluence operations fundamentals\u003c\/span\u003e\u003c\/p\u003e\n\u003c\/li\u003e\n\u003cli dir=\"ltr\" aria-level=\"1\"\u003e\n\u003cp dir=\"ltr\" role=\"presentation\"\u003e\u003cspan\u003ePsychological operations (PSYOP)\u003c\/span\u003e\u003c\/p\u003e\n\u003c\/li\u003e\n\u003cli dir=\"ltr\" aria-level=\"1\"\u003e\n\u003cp dir=\"ltr\" role=\"presentation\"\u003e\u003cspan\u003eDeception and counterdeception strategies and tactics\u003c\/span\u003e\u003c\/p\u003e\n\u003c\/li\u003e\n\u003cli dir=\"ltr\" aria-level=\"1\"\u003e\n\u003cp dir=\"ltr\" role=\"presentation\"\u003e\u003cspan\u003eTargeting\u003c\/span\u003e\u003c\/p\u003e\n\u003c\/li\u003e\n\u003cli dir=\"ltr\" aria-level=\"1\"\u003e\n\u003cp dir=\"ltr\" role=\"presentation\"\u003e\u003cspan\u003eMessaging strategies and contest prep-time\u003c\/span\u003e\u003c\/p\u003e\n\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eDay 2\u003c\/span\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli dir=\"ltr\" aria-level=\"1\"\u003e\n\u003cp dir=\"ltr\" role=\"presentation\"\u003e\u003cspan\u003eCreating desired effects\u003c\/span\u003e\u003c\/p\u003e\n\u003c\/li\u003e\n\u003cli dir=\"ltr\" aria-level=\"1\"\u003e\n\u003cp dir=\"ltr\" role=\"presentation\"\u003e\u003cspan\u003eExploiting cognition and bias\u003c\/span\u003e\u003c\/p\u003e\n\u003c\/li\u003e\n\u003cli dir=\"ltr\" aria-level=\"1\"\u003e\n\u003cp dir=\"ltr\" role=\"presentation\"\u003e\u003cspan\u003eCommunication channels and amplification\u003c\/span\u003e\u003c\/p\u003e\n\u003c\/li\u003e\n\u003cli dir=\"ltr\" aria-level=\"1\"\u003e\n\u003cp dir=\"ltr\" role=\"presentation\"\u003e\u003cspan\u003eIO incident response\u003c\/span\u003e\u003c\/p\u003e\n\u003c\/li\u003e\n\u003cli dir=\"ltr\" aria-level=\"1\"\u003e\n\u003cp dir=\"ltr\" role=\"presentation\"\u003e\u003cspan\u003eOffensive and defensive TTPs\u003c\/span\u003e\u003c\/p\u003e\n\u003c\/li\u003e\n\u003cli dir=\"ltr\" aria-level=\"1\"\u003e\n\u003cp dir=\"ltr\" role=\"presentation\"\u003e\u003cspan\u003eAutomation in influence operations\u003c\/span\u003e\u003c\/p\u003e\n\u003c\/li\u003e\n\u003cli dir=\"ltr\" aria-level=\"1\"\u003e\n\u003cp dir=\"ltr\" role=\"presentation\"\u003e\u003cspan\u003eAI and influence operations\u003c\/span\u003e\u003c\/p\u003e\n\u003c\/li\u003e\n\u003cli dir=\"ltr\" aria-level=\"1\"\u003e\n\u003cp dir=\"ltr\" role=\"presentation\"\u003e\u003cspan\u003eIO contest and prizes awarded\u003c\/span\u003e\u003c\/p\u003e\n\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eDifficulty Level:\u003c\/strong\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eBeginner to Intermediate\u003c\/span\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eSuggested Prerequisites:\u003c\/strong\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eAll people interested in influence operations would enjoy and benefit from this class, especially those at the beginner or intermediate level. Note that this course pairs well with our Adversarial Thinking: The Art of Dangerous Ideas course offered during the other DEF CON Training session, although both courses are designed to be taken independently as well. Additionally, if you are a highly experienced influence operations practitioner looking for hands-on experience with specific tools this course may not be as appropriate.\u003c\/span\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eWhat Students Should Bring: \u003c\/strong\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eWhile not strictly required, a laptop and an authorized social media account (X or Mastodon are preferred) would be useful to fully participate in the influence operations contest. However, we also offer offline options to participate.\u003c\/span\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eTrainer(s) Bio:\u003c\/strong\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003e\u003cstrong\u003eGreg Conti\u003c\/strong\u003e \u003c\/span\u003e\u003cspan\u003eis a hacker, maker, and computer scientist. He is a nine-time DEF CON speaker, a seven-time Black Hat speaker, and has been a Black Hat Trainer for 10 years. He’s taught hacking and information security techniques at West Point, Stanford University bootcamps, NSA\/U.S. Cyber Command, and for private clients in the financial, non-profit, and cybersecurity sectors. Greg is Co-Founder and Principal at Kopidion, a cyber security training and professional services firm. \u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eFormerly he served on the West Point faculty for 16 years, where he led their cybersecurity research and education programs. During his U.S. Army and Military Intelligence career he co-created U.S. Cyber Command’s Joint Advanced Cyberwarfare Course, deployed to Iraq as Officer-in-Charge of U.S. Cyber Command’s Expeditionary Cyber Support Element, and was the first Director of the Army Cyber Institute. \u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eGreg is co-author of On Cyber: Towards an Operational Art for Cyber Operations, and approximately 100 articles and papers covering hacking, online privacy, usable security, cyber conflict, and security visualization. Greg holds a B.S. from West Point, an M.S. from Johns Hopkins University, and a Ph.D. from the Georgia Institute of Technology, all in computer science. His work may be found at \u003c\/span\u003e\u003ca href=\"http:\/\/gregconti.com\/\"\u003e\u003cspan\u003egregconti.com\u003c\/span\u003e\u003c\/a\u003e\u003cspan\u003e (\u003c\/span\u003e\u003ca href=\"https:\/\/www.gregconti.com\/\"\u003e\u003cspan\u003ehttps:\/\/www.gregconti.com\/\u003c\/span\u003e\u003c\/a\u003e\u003cspan\u003e), \u003c\/span\u003e\u003ca href=\"http:\/\/kopidion.com\/\"\u003e\u003cspan\u003ekopidion.com\u003c\/span\u003e\u003c\/a\u003e\u003cspan\u003e (\u003c\/span\u003e\u003ca href=\"https:\/\/www.kopidion.com\/\"\u003e\u003cspan\u003ehttps:\/\/www.kopidion.com\/\u003c\/span\u003e\u003c\/a\u003e\u003cspan\u003e) and LinkedIn (\u003c\/span\u003e\u003ca href=\"https:\/\/www.linkedin.com\/in\/greg-conti-7a8521\/\"\u003e\u003cspan\u003ehttps:\/\/www.linkedin.com\/in\/greg-conti-7a8521\/\u003c\/span\u003e\u003c\/a\u003e\u003cspan\u003e).\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eTom Cross\u003c\/strong\u003e\u003cspan\u003e\u003cstrong\u003e \u003c\/strong\u003eis an entrepreneur and technology leader with three decades of experience in the hacker community. Tom attended the first DefCon in 1993 and he ran bulletin board systems and listservs in the early 1990’s that served the hacker community in the southeastern United States. He is currently an independent security consultant, Principal at Kopidion, and creator of FeedSeer, a news reader for Mastodon. Previously he was CoFounder and CTO of Drawbridge Networks, Director of Security Research at Lancope, and Manager of the IBM Internet Security Systems X-Force Advanced Research team. He has written papers on collateral damage in cyber conflict, vulnerability disclosure ethics, security issues in internet routers, encrypting open wireless networks, and protecting Wikipedia from vandalism. He has spoken at numerous security conferences, including Black Hat Briefings, Defcon, CyCon, HOPE, Source Boston, FIRST, and Security B-Sides. He has a B.S. in Computer Engineering from the Georgia Institute of Technology. He can be found on Linkedin as \u003c\/span\u003e\u003ca href=\"https:\/\/www.linkedin.com\/in\/tom-cross-71455\/\"\u003e\u003cspan\u003ehttps:\/\/www.linkedin.com\/in\/tom-cross-71455\/\u003c\/span\u003e\u003c\/a\u003e\u003cspan\u003e, and on Mastodon as \u003c\/span\u003e\u003ca href=\"https:\/\/ioc.exchange\/@decius\"\u003e\u003cspan\u003ehttps:\/\/ioc.exchange\/@decius\u003c\/span\u003e\u003c\/a\u003e\u003cspan\u003e. \u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eRegistration Terms and Conditions: \u003c\/strong\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eTrainings are refundable before \u003c\/span\u003e\u003cspan\u003eJuly 8, 2025, \u003c\/span\u003e\u003cspan\u003eminus a non-refundable processing fee of $250.\u003c\/span\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eTrainings are non-refundable \u003c\/span\u003e\u003cspan\u003eafter July 8, 2025.\u003c\/span\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eTraining tickets may be transferred. Please email us at training@defcon.org for specifics.\u003c\/span\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eIf a training does not reach the minimum registration requirement, it may be cancelled. In the event the training you choose is cancelled, you will be provided the option of receiving a full refund or transferring to another training (subject to availability).\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eFailure to attend the training without prior written notification, will be considered a no-show. No refund will be given.\u003c\/span\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eBy purchasing this ticket you agree to abide by the \u003c\/span\u003e\u003ca href=\"https:\/\/defcon.org\/html\/links\/dc-code-of-conduct.html\"\u003e\u003cspan\u003eDEF CON Training Code of Conduct \u003c\/span\u003e\u003c\/a\u003e\u003cspan\u003eand the registration terms and conditions listed above.\u003c\/span\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eSeveral breaks will be included throughout the day. Please note that food is not included.\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eAll courses come with a certificate of completion, contingent upon attendance at all course sessions.\u003c\/span\u003e\u003c\/p\u003e","brand":"Las Vegas 2025","offers":[{"title":"Course only","offer_id":46286721974490,"sku":"","price":2400.0,"currency_code":"USD","in_stock":false}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0629\/2088\/4442\/files\/Kopidion-Influence_Operations.png?v=1749831447"},{"product_id":"cyber-ai-policy-basics-what-every-organization-needs-in-place-pamela-pam-feld-greg-goldberg-dctlv2026-1-day-course-friday","title":"Cyber \u0026 AI Policy Basics: What Every Organization Needs in Place -  Pamela \"Pam\" Feld \u0026 Greg Goldberg - DCTLV2026 **1-day Course - Friday**","description":"\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eName of Training\u003c\/strong\u003e\u003cspan\u003e\u003cstrong\u003e:\u003c\/strong\u003e Cyber \u0026amp; AI Policy Basics: What Every Organization Needs in Place\u003cbr\u003e\u003c\/span\u003e\u003cstrong\u003eTrainer(s)\u003c\/strong\u003e\u003cspan\u003e\u003cstrong\u003e:\u003c\/strong\u003e Pamela \"Pam\" Feld \u0026amp; Greg Goldberg\u003cbr\u003e\u003c\/span\u003e\u003cstrong\u003eDates\u003c\/strong\u003e\u003cspan\u003e\u003cstrong\u003e:\u003c\/strong\u003e August 7, 2026 \u003cstrong\u003e**Note: 1-day Course**\u003c\/strong\u003e\u003cbr\u003e\u003c\/span\u003e\u003cspan\u003e\u003cstrong\u003eTime:\u003c\/strong\u003e 8\u003c\/span\u003e\u003cspan\u003e:00 am to 5:00 pm \u003cbr\u003e\u003c\/span\u003e\u003cstrong\u003eVenue\u003c\/strong\u003e\u003cspan\u003e\u003cstrong\u003e:\u003c\/strong\u003e \u003cmeta charset=\"utf-8\"\u003eLas Vegas Convention Center\u003cbr\u003e\u003c\/span\u003e\u003cstrong\u003eCost\u003c\/strong\u003e\u003cspan\u003e\u003cstrong\u003e: \u003c\/strong\u003e$3,500 (USD)\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003e\u003cmeta charset=\"utf-8\"\u003e \u003cstrong\u003e**Please note: This one-day training will be held Friday, August 7. Participants will receive a DEF CON Human Badge with their registration*\u003c\/strong\u003e*\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eShort Summary:\u003c\/strong\u003e\u003c\/p\u003e\n\u003cp\u003eAs organizations rapidly adopt AI while facing escalating cyber threats, leaders are increasingly exposed to operational, legal, and reputational risk. This class is designed for executives, IT leaders, and decision-makers who need practical guidance—not theory—on how to govern AI and cybersecurity responsibly.\u003c\/p\u003e\n\u003cp\u003eParticipants will explore real-world Cyber incidents, AI Ethics and failures, and governance breakdowns, gaining clarity on executive accountability, regulatory expectations, and insurance realities. The session goes beyond awareness, equipping attendees with actionable frameworks, policy guidance, and incident response strategies they can immediately apply within their organizations.\u003c\/p\u003e\n\u003cp\u003eThis interactive workshop includes live exercises, scenario-based discussions, ensuring attendees leave with defensible governance practices and a clear roadmap for reducing risk while enabling innovation.\u003c\/p\u003e\n\u003cp\u003eLed by a Certified IEEE Artificial Intelligence Ethics expert\/Cybersecurity Consultant, and a Business Technology Attorney, this course blends AI ethics, cybersecurity, and legal insight into practical guidance that can save your organization thousands of dollars—and prevent costly mistakes—with just one smart, implementable tip.\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eCourse Description: \u003c\/strong\u003e\u003c\/p\u003e\n\u003cp\u003eThis course offers a practical, business-focused introduction to Artificial Intelligence and Cybersecurity, emphasizing risk awareness, secure adoption, and responsible use of emerging technologies. Designed for industry professionals, students, and career changers at beginner to intermediate levels, participants will learn how AI systems operate, their limitations, and how improper use can expose organizations to cybersecurity, ethical, and financial risk. A technology attorney provides real-world insight into navigating legal and compliance challenges, helping organizations avoid costly mistakes in a rapidly evolving regulatory landscape.\u003c\/p\u003e\n\u003cp\u003eThrough real-world examples, learners will see how AI interacts with data and decision-making, and how problems like data leaks, poorly connected systems, or relying too much on automated tools can create risks for organizations. The course covers ways to spot potential risks in AI, and practical tips to protect systems. By the end, participants will have foundational frameworks and confidence to work safely with AI, ask the right questions, and help their organizations adopt technology responsibly with their policies and procedures.\u003c\/p\u003e\n\u003cp\u003e\u003cspan\u003e\u003cstrong\u003eCourse Outline: \u003c\/strong\u003e\u003c\/span\u003e\u003c\/p\u003e\n\u003cp\u003e\u003cspan\u003eIntroduction and Course Overview\u003c\/span\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cspan\u003eOverview of the training goals, Agenda, and expectations\u003c\/span\u003e\u003c\/li\u003e\n\u003cli\u003e\u003cspan\u003eIntroduction to key concepts across management, security, and AI Ethics \u0026amp; governance\u003c\/span\u003e\u003c\/li\u003e\n\u003cli\u003e\u003cspan\u003eIcebreaker: Participants share experiences with AI or security concern\u003c\/span\u003e\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cspan\u003eLeadership and Decision Making in Technology Environments\u003cbr\u003e\u003c\/span\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cspan\u003eRole of leadership in managing technology driven change\u003cbr\u003e\u003c\/span\u003e\u003c\/li\u003e\n\u003cli\u003e\u003cspan\u003eUnderstanding accountability, risk ownership, and ethical responsibility\u003cbr\u003e\u003c\/span\u003e\u003c\/li\u003e\n\u003cli\u003e\u003cspan\u003eHow leaders make informed decisions when adopting AI and digital systems.\u003cbr\u003e\u003c\/span\u003e\u003c\/li\u003e\n\u003cli\u003e\u003cspan\u003eInteractive polling\u003cbr\u003e\u003c\/span\u003e\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cspan\u003ePolicy and Governance Fundamentals\u003c\/span\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cspan\u003eIntroduction to policy development and governance structures.\u003cbr\u003e\u003c\/span\u003e\u003c\/li\u003e\n\u003cli\u003e\u003cspan\u003eDifference between internal policies, external regulations, and industry standards\u003cbr\u003e\u003c\/span\u003e\u003c\/li\u003e\n\u003cli\u003e\u003cspan\u003eOverview of governance frameworks used to manage technology and security risks. Overview of Insurance\u003cbr\u003e\u003c\/span\u003e\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cspan\u003eRisk Management and Organizational Oversight\u003c\/span\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cspan\u003eIdentifying operational, legal, and reputational risks\u003cbr\u003e\u003c\/span\u003e\u003c\/li\u003e\n\u003cli\u003e\u003cspan\u003eRoles of management, boards, and compliance teams\u003cbr\u003e\u003c\/span\u003e\u003c\/li\u003e\n\u003cli\u003e\u003cspan\u003ePractical examples of governance failures and best practices\u003cbr\u003e\u003c\/span\u003e\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cspan\u003eCase Discussion and Knowledge Check\u003cbr\u003e\u003c\/span\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cspan\u003eGuided discussion using real world management and governance scenarios\u003cbr\u003e\u003c\/span\u003e\u003c\/li\u003e\n\u003cli\u003e\u003cspan\u003eShort group exercises to reinforce key concepts\u003c\/span\u003e\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003eIntroduction to AI Policy and Ethics\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eWhat AI systems are and how they are used in organizations\u003c\/li\u003e\n\u003cli\u003eEthical principles such as fairness, transparency, accountability, and human oversight\u003c\/li\u003e\n\u003cli\u003eWhy AI policy matters in real world decision making\u003c\/li\u003e\n\u003cli\u003eGroup discussion breakout\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003eManaging Ethical and Security Risks in AI Systems\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eCommon risks including bias, misuse, automation errors, and overreliance on AI\u003c\/li\u003e\n\u003cli\u003eIntersection of security, ethics, and governance\u003c\/li\u003e\n\u003cli\u003eHow policies help reduce these risks\u003c\/li\u003e\n\u003cli\u003eLive exercise. Sample templates for policies\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003ePractical Use Cases and Responsible AI Adoption\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eReal world examples of AI in business, public sector, and services\u003c\/li\u003e\n\u003cli\u003eEvaluating AI tools before use\u003c\/li\u003e\n\u003cli\u003eQuestions leaders and managers should ask vendors and internal teams\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003eCourse Wrap Up, Resources, Templates, and Next Steps\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eKey takeaways and summary\u003c\/li\u003e\n\u003cli\u003eOpen discussion and Q and A\u003c\/li\u003e\n\u003cli\u003eOverview of optional proficiency exam and further learning resources\u003c\/li\u003e\n\u003cli\u003eOptional exam\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eDifficulty Level:\u003c\/strong\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003eBeginner to Intermediate\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003eBeginner Definition - The student has an interest in the topic presented and general technology knowledge that a power user or undergraduate student may have acquired.\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eIntermediate Definition - The student has education and some experience in the field and familiarity with the topic being presented. The student has foundational knowledge that the course will leverage to provide practical skills on the topic.\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eSuggested Prerequisites:\u003c\/strong\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003eThere are no formal prerequisites for this course. The training is designed to be accessible to participants with little to no technical background.\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eWhat Students Should Bring: \u003c\/strong\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003eStudents should bring a laptop with reliable internet access and the ability to access websites, online platforms, and scan or upload documents as needed. This will ensure full participation in hands-on exercises, assessments, and any required digital activities during the training.\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eWhat the Trainer Will Provide:\u003c\/strong\u003e\u003c\/p\u003e\n\u003cp\u003eWe will provide additional materials, resources and policy templates of a 30-day action plan\u003c\/p\u003e\n\u003cp\u003eParticipants who complete the course may be eligible for an optional, discounted post- program Cyber\/AI policy review conducted by our consulting team, with legal review available were permitted by conference guidelines and applicable ethics rules.\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong style=\"font-family: -apple-system, BlinkMacSystemFont, 'San Francisco', 'Segoe UI', Roboto, 'Helvetica Neue', sans-serif; font-size: 0.875rem;\"\u003eTrainer(s) Bio:\u003c\/strong\u003e\u003c\/p\u003e\n\u003cp\u003e\u003cstrong\u003ePamela Feld\u003c\/strong\u003e is the Founder \u0026amp; CEO of Triumph Technology Group and an award-winning national speaker on Cybersecurity, AI governance, and Digital Transformation. With decades of experience across corporate, public sector, and regulated industries, Pamela advises executives and organizations on reducing cyber risk, implementing ethical AI, and building resilient governance frameworks.\u003c\/p\u003e\n\u003cp\u003ePamela has worked with utilities, healthcare organizations, universities, and Fortune-level enterprises, and is a recognized leader in executive education. Her work bridges technical risk, legal exposure, and executive decision-making—transforming complex issues into practical, accessible, and actionable strategies for leadership teams. In addition to recently being awarded as an IEEE Certified Assessor, she is a graduate of UC Irvine,Stanford Graduate Entrepreneur Program, and the UCLA MDE program. Her company Triumph Technology Group, a Cyber and AI consulting firm, recently partnered with Intel on their AI Accelerator program.\u003c\/p\u003e\n\u003cp\u003e\u003cstrong\u003eGreg Goldberg\u003c\/strong\u003e is a savvy litigator with twenty years of experience battling in state and federal courts across the United States. Greg is also General Counsel for the Business Technology Association, a 100-year-old not-for-profit organization whose members include office equipment dealers and managed information technology providers all over the country. Through his work, Greg has developed subject matter expertise in cyber security, privacy, and artificial intelligence.\u003c\/p\u003e\n\u003cp\u003eServing as ex officio General Counsel to member organizations in the office technology and managed IT services sectors, Greg advises businesses on a wide range of employment, privacy, and litigation matters. His experience includes counseling on employee restrictive covenants, separations and terminations, workforce restructurings, and the development of workplace policies such as AI governance, surveillance, personal device use, and vehicle policies. He regularly guides organizations on data security, privacy compliance, crisis management, and website best practices. In addition to managing a robust commercial litigation docket—from pre-litigation strategy through trial, enforcement, and appeals—he is a frequent presenter and educator, delivering webinars and live programs and contributing monthly columns on emerging legal and regulatory trends impacting technology-driven businesses.\u003cbr\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eProficiency Exam Option:\u003c\/strong\u003e\u003c\/p\u003e\n\u003cp\u003eThe exam will include multiple choice questions to assess participants' understanding of core AI policy frameworks, ethical principles, and real-world application considerations. Participants must achieve a minimum passing score of at least 70 percent to successfully complete the exam and earn a proficiency credential.\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003ePlease reach out to training@defcon.org for any questions related to the proficiency exam and certificate option.\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eRegistration Terms and Conditions: \u003c\/strong\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eTrainings are refundable before July 11, 2026, minus a non-refundable processing fee of $250.\u003c\/span\u003e\u003cspan\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eBetween July 11, 2026 and August 5, 2026 partial refunds will be granted, equal to 50% of the course fee minus a processing fee of $250.\u003c\/span\u003e\u003cspan\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eAll trainings are non-refundable after August 5, 2026.\u003c\/span\u003e\u003cspan\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eTraining tickets may be transferred to another student. Please email us at training@defcon.org for specifics.\u003c\/span\u003e\u003cspan\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eIf a training does not reach the minimum registration requirement, it may be cancelled. In the event the training you choose is cancelled, you will be provided the option of receiving a full refund or transferring to another training (subject to availability).\u003c\/span\u003e\u003cspan\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eFailure to attend the training without prior written notification will be considered a no-show. No refund will be given.\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eDEF CON Training may share student contact information, including names and emails, with the course instructor(s) to facilitate sharing of pre-work and course instructions. Instructors are required to safeguard this information and provide appropriate protection so that it is kept private. Instructors may not use student information outside the delivery of this course without the permission of the student.\u003c\/span\u003e\u003cspan\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eBy purchasing this ticket you agree to abide by the \u003c\/span\u003e\u003ca href=\"https:\/\/defcon.org\/html\/links\/dc-code-of-conduct.html\"\u003e\u003cspan\u003eDEF CON Training Code of Conduct\u003c\/span\u003e\u003c\/a\u003e\u003cspan\u003e and the registration terms and conditions listed above.\u003c\/span\u003e\u003cspan\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eSeveral breaks will be included throughout the day. Please note that food is not included.\u003c\/span\u003e\u003cspan\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eAll courses come with a certificate of completion, contingent upon attendance at all course sessions. Some courses offer an option to upgrade to a certificate of proficiency, which requires an additional purchase and sufficient performance on an end-of-course evaluation.\u003c\/span\u003e\u003c\/p\u003e","brand":"Las Vegas 2026","offers":[{"title":"Course only - Aug 7 (includes DEF CON Human Badge)","offer_id":47677675667674,"sku":null,"price":3500.0,"currency_code":"USD","in_stock":true},{"title":"Course + Proficiency Exam (includes DEF CON Human Badge)","offer_id":47677675700442,"sku":null,"price":3800.0,"currency_code":"USD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0629\/2088\/4442\/files\/PamHeadshot-HighRes.jpg?v=1773684563"},{"product_id":"beat-the-breach-defend-respond-survive-mckay-hardy-wes-wagstaff-dctlv2026","title":"Beat the Breach: Defend, Respond, Survive -  McKay Hardy \u0026 Wes Wagstaff - DCTLV2026 **1-day Course - Friday**","description":"\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eName of Training\u003c\/strong\u003e\u003cspan\u003e\u003cstrong\u003e:\u003c\/strong\u003e Beat the Breach: Defend, Respond, Survive\u003cbr\u003e\u003c\/span\u003e\u003cstrong\u003eTrainer(s)\u003c\/strong\u003e\u003cspan\u003e\u003cstrong\u003e:\u003c\/strong\u003e McKay Hardy and Wes Wagstaff\u003cbr\u003e\u003c\/span\u003e\u003cstrong\u003eDates\u003c\/strong\u003e\u003cspan\u003e\u003cstrong\u003e:\u003c\/strong\u003e August 7, 2026 \u003cstrong\u003e**1-day course**\u003c\/strong\u003e\u003cbr\u003e\u003c\/span\u003e\u003cspan\u003e\u003cstrong\u003eTime:\u003c\/strong\u003e 8\u003c\/span\u003e\u003cspan\u003e:00 am to 5:00 pm \u003cbr\u003e\u003c\/span\u003e\u003cstrong\u003eVenue\u003c\/strong\u003e\u003cspan\u003e\u003cstrong\u003e:\u003c\/strong\u003e \u003cmeta charset=\"utf-8\"\u003eLas Vegas Convention Center\u003cbr\u003e\u003c\/span\u003e\u003cstrong\u003eCost\u003c\/strong\u003e\u003cspan\u003e\u003cstrong\u003e: \u003c\/strong\u003e$2,250 (USD)\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003e\u003cmeta charset=\"utf-8\"\u003e \u003cstrong\u003e**Please note: This one-day training will be held Friday, August 7. Participants will receive a DEF CON Human Badge with their registration*\u003c\/strong\u003e*\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eShort Summary:\u003c\/strong\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003eBeat the Breach throws participants into a live, hostile enterprise compromise where nothing is scripted and outcomes depend entirely on team decisions. You'll hunt, contain, and coordinate through a real incident in motion-learning what actually breaks, what actually works, and why this feels nothing like any lab or training you've done before.\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eCourse Description: \u003c\/strong\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003eBeat the Breach is an immersive, live-fire incident response simulation designed to replicate the chaos, uncertainty, and pressure of a real enterprise compromise. Participants are dropped into an active breach with their own analyst workstations and must investigate, contain, and coordinate as a team while the incident evolves in real time. There are no slides, no scripted labs, and no predetermined paths-the environment adapts to participant decisions, forcing teams to confront the same ambiguity and cascading consequences found in real incidents.\u003c\/p\u003e\n\u003cp\u003eStudents work together in rotating roles such as SOC analyst, threat intel lead, and incident commander while navigating a fully realized enterprise environment that includes Active Directory, endpoints, applications, logs, attacker infrastructure, and adversary communications. The simulation emphasizes real-world skills-alert triage, lateral movement detection, containment tradeoffs, and crisis decision-making-while incorporating subtle gamified pressure to keep the experience intense and engaging. By the end of the course, participants walk away having experienced what most people only encounter during an actual breach, gaining instincts and confidence that can't be taught through traditional training.\u003c\/p\u003e\n\u003cp\u003e\u003cspan\u003e\u003cstrong\u003eCourse Outline: \u003c\/strong\u003e\u003c\/span\u003e\u003c\/p\u003e\n\u003cp\u003eBeat the Breach is not a slide-driven or lecture-based course, and therefore does not follow a traditional scripted syllabus. The training is delivered as an adaptive, live-fire simulation where participant decisions shape the sequence, timing, and intensity of events. While the environment dynamically responds to the team's actions, the course is still structured around defined phases of an enterprise cyber incident. The outline below reflects the planned progression, core learning objectives, and approximate timing of major modules; however, specific subtopics, pacing, and investigative paths vary organically based on the team's choices, just as they would during an actual breach.\u003c\/p\u003e\n\u003cp\u003eThis approach is intentional: this training is designed to replicate real-world incident response conditions where events do not occur in a fixed order, timelines are fluid, and teams must prioritize, adapt, and collaborate under pressure.\u003c\/p\u003e\n\u003cp\u003e\u003cstrong\u003eModule 1 - Orientation, Environment Familiarization \u0026amp; Scenario Launch\u003c\/strong\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eOverview of enterprise environment: AD structure, user accounts, endpoints, web assets, file servers\u003c\/li\u003e\n\u003cli\u003eIntroduction to analyst workstation: SOC dashboards, logs, alerts, investigative tools\u003c\/li\u003e\n\u003cli\u003eThreat briefing: known indicators, executive expectations, initial intelligence\u003c\/li\u003e\n\u003cli\u003eRules of engagement, communication norms, team structure\u003c\/li\u003e\n\u003cli\u003eScenario activation: first indicators of compromise, initial alerts, early triage pressure\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cstrong\u003eModule 2 - Dynamic Incident Response Simulation (Investigation, Containment \u0026amp; Crisis Operations)\u003c\/strong\u003e\u003c\/p\u003e\n\u003cp\u003e\u003cem\u003e*A continuous, adaptive module representing the core of the live-fire exercise.*\u003c\/em\u003e\u003c\/p\u003e\n\u003cp\u003eFocus areas include:\u003c\/p\u003e\n\u003cp\u003eInvestigation \u0026amp; Analysis\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eAlert triage: phishing, malware execution, suspicious authentications\u003cbr\u003e\n\u003c\/li\u003e\n\u003cli\u003eLog analysis across multiple platforms (EDR, SIEM, network telemetry)\u003cbr\u003e\n\u003c\/li\u003e\n\u003cli\u003eIdentifying patient zero and initial attack vector\u003cbr\u003e\n\u003c\/li\u003e\n\u003cli\u003eLateral movement detection (SMB, RDP, MFA fatigue, token abuse)\u003cbr\u003e\n\u003c\/li\u003e\n\u003cli\u003ePrivilege escalation analysis\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003eContainment \u0026amp; Defensive Actions\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eHost isolation decisions\u003cbr\u003e\n\u003c\/li\u003e\n\u003cli\u003eNetwork segmentation choices\u003cbr\u003e\n\u003c\/li\u003e\n\u003cli\u003eBlocking C2, disabling accounts, identifying persistence mechanisms - Evaluating containment impact and blast radius\u003cbr\u003e\n\u003c\/li\u003e\n\u003cli\u003eTradeoffs and consequences of containment timing\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003eForensic Pivoting \u0026amp; Threat Actor Tracking\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eArtifact collection (memory captures, malicious binaries, logs, PCAPs)\u003c\/li\u003e\n\u003cli\u003eInfrastructure analysis: domains, servers, dark web comms\u003cbr\u003e\n\u003c\/li\u003e\n\u003cli\u003eCorrelating attacker behaviors into a timeline\u003cbr\u003e\n\u003c\/li\u003e\n\u003cli\u003eIdentifying ransomware staging behavior\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003eCommunication, Coordination \u0026amp; Human Factors\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eDrafting internal executive updates under time pressure\u003cbr\u003e\n\u003c\/li\u003e\n\u003cli\u003eManaging PR exposure and responding to manipulated media\u003cbr\u003e\n\u003c\/li\u003e\n\u003cli\u003eEngaging with mock threat actor channels\u003cbr\u003e\n\u003c\/li\u003e\n\u003cli\u003eTeam coordination: SOC \u0026lt;-\u0026gt; IR \u0026lt;-\u0026gt; CTI \u0026lt;-\u0026gt; Incident Commander\u003cbr\u003e\n\u003c\/li\u003e\n\u003cli\u003eDecision-making under uncertainty and incomplete data\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003eGamified Pressure Elements (Without Sacrificing Realism)\u003cbr\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eLive ransomware countdown clock\u003cbr\u003e\n\u003c\/li\u003e\n\u003cli\u003eConditional branching events triggered by team actions\u003cbr\u003e\n\u003c\/li\u003e\n\u003cli\u003e\"Forking paths\" where good decisions slow the attack, missteps accelerate it\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cstrong\u003eModule 3 - Recovery, Debriefing \u0026amp; Playbook Development\u003c\/strong\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eFinal containment and eradication decisions\u003cbr\u003e\n\u003c\/li\u003e\n\u003cli\u003eValidating ransomware prevention or mitigation success - Root cause analysis and incident timeline reconstruction\u003cbr\u003e\n\u003c\/li\u003e\n\u003cli\u003eReview of team communication patterns and decision-making loops\u003cbr\u003e\n\u003c\/li\u003e\n\u003cli\u003eIdentifying gaps ni RI process, tooling, detection logic, and escalation paths\u003cbr\u003e\n\u003c\/li\u003e\n\u003cli\u003eBuilding a tailored incident response playbook based on team performance\u003cbr\u003e\n\u003c\/li\u003e\n\u003cli\u003eDelivery of post-exercise artifacts, lessons learned, and recommended improvements\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eDifficulty Level:\u003c\/strong\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003eIntermediate\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eIntermediate Definition - The student has education and some experience in the field and familiarity with the topic being presented. The student has foundational knowledge that the course will leverage to provide practical skills on the topic.\u003c\/span\u003e\u003c\/p\u003e\n\u003cp\u003e\u003cspan style=\"text-decoration: underline;\"\u003eExplanation:\u003c\/span\u003e\u003cbr\u003eThis course is designed for participants who already have foundational cybersecurity knowledge and some practical experience working ni enterprise or security-adjacent environments. Students are expected to be comfortable with basic security concepts, logs, systems, and investigative workflows, but do not need prior incident response specialization.\u003c\/p\u003e\n\u003cp\u003eThe training leverages existing knowledge and places participants into a realistic, high- pressure simulation where they apply and expand their skills through hands-on investigation, decision-making, and team coordination. Absolute beginners are not recommended, while highly experienced practitioners will still find the adaptive environment challenging due to its realism and evolving complexity.\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eSuggested Prerequisites:\u003c\/strong\u003e\u003c\/p\u003e\n\u003cp\u003eParticipants should have prior hands-on experience in cybersecurity, IT operations, or a closely related technical role. While formal incident response experience is not required, students will benefit most fi they are comfortable working within enterprise environments and interpreting technical signals without step-by-step guidance.\u003c\/p\u003e\n\u003cp\u003eRecommended background includes:\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eFamiliarity with enterprise operating systems (Windows and Linux)\u003cbr\u003e\n\u003c\/li\u003e\n\u003cli\u003eBasic understanding of Active Directory concepts, authentication, and user permissions\u003cbr\u003e\n\u003c\/li\u003e\n\u003cli\u003eExperience reading and interpreting logs or alerts from security or system sources\u003cbr\u003e\n\u003c\/li\u003e\n\u003cli\u003eGeneral knowledge of common attack techniques (phishing, credential abuse, lateral movement)\u003cbr\u003e\n\u003c\/li\u003e\n\u003cli\u003eComfort working at the command line and navigating unfamiliar systems\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003eThis course is not tool-specific, and no prior knowledge of a particular vendor platform is required. Participants may optionally bring their own tools or scripts, provided they comply with applicable licensing and usage terms.\u003c\/p\u003e\n\u003cp\u003eNo pre-work or advance reading is required. All context necessary to engage in the simulation is provided during the course, allowing students to focus on hands-on investigation, decision-making, and team coordination from the start.\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eWhat Students Should Bring: \u003c\/strong\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003eEverything will be provided for the students.\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eWhat the Trainer Will Provide:\u003c\/strong\u003e\u003c\/p\u003e\n\u003cp\u003eEach participant will be provided a complete analyst workstation which includes laptop, mouse, keyboard.\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong style=\"font-family: -apple-system, BlinkMacSystemFont, 'San Francisco', 'Segoe UI', Roboto, 'Helvetica Neue', sans-serif; font-size: 0.875rem;\"\u003eTrainer(s) Bio:\u003c\/strong\u003e\u003c\/p\u003e\n\u003cp\u003e\u003cstrong\u003eMcKay Hardy\u003c\/strong\u003e is a cybersecurity consultant with more than 13 years of hands-on experience across incident response, insider threat investigations, digital forensics, penetration testing, software development, and ICS\/OT integrations. He has led and supported incident response efforts for organizations in highly regulated and operationally critical environments, bringing a practical, mission-focused approach to defending real-world systems.\u003c\/p\u003e\n\u003cp\u003e\u003cstrong\u003eWestley Wagstaff\u003c\/strong\u003e has seven (7) years of experience in security governance, risk and compliance (GRC). He has managed enterprise level risk management and third party risk management programs that considered the organizations risk tolerance, security risk frameworks, and legal obligations.\u003cstrong\u003e\u003c\/strong\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eRegistration Terms and Conditions: \u003c\/strong\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eTrainings are refundable before July 11, 2026, minus a non-refundable processing fee of $250.\u003c\/span\u003e\u003cspan\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eBetween July 11, 2026 and August 5, 2026 partial refunds will be granted, equal to 50% of the course fee minus a processing fee of $250.\u003c\/span\u003e\u003cspan\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eAll trainings are non-refundable after August 5, 2026.\u003c\/span\u003e\u003cspan\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eTraining tickets may be transferred to another student. Please email us at training@defcon.org for specifics.\u003c\/span\u003e\u003cspan\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eIf a training does not reach the minimum registration requirement, it may be cancelled. In the event the training you choose is cancelled, you will be provided the option of receiving a full refund or transferring to another training (subject to availability).\u003c\/span\u003e\u003cspan\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eFailure to attend the training without prior written notification will be considered a no-show. No refund will be given.\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eDEF CON Training may share student contact information, including names and emails, with the course instructor(s) to facilitate sharing of pre-work and course instructions. Instructors are required to safeguard this information and provide appropriate protection so that it is kept private. Instructors may not use student information outside the delivery of this course without the permission of the student.\u003c\/span\u003e\u003cspan\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eBy purchasing this ticket you agree to abide by the \u003c\/span\u003e\u003ca href=\"https:\/\/defcon.org\/html\/links\/dc-code-of-conduct.html\"\u003e\u003cspan\u003eDEF CON Training Code of Conduct\u003c\/span\u003e\u003c\/a\u003e\u003cspan\u003e and the registration terms and conditions listed above.\u003c\/span\u003e\u003cspan\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eSeveral breaks will be included throughout the day. Please note that food is not included.\u003c\/span\u003e\u003cspan\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eAll courses come with a certificate of completion, contingent upon attendance at all course sessions. Some courses offer an option to upgrade to a certificate of proficiency, which requires an additional purchase and sufficient performance on an end-of-course evaluation.\u003c\/span\u003e\u003c\/p\u003e","brand":"Las Vegas 2026","offers":[{"title":"Course only - Aug 7 (includes DEF CON Human Badge)","offer_id":47683099295962,"sku":null,"price":2250.0,"currency_code":"USD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0629\/2088\/4442\/files\/DCT400x400.png?v=1741635584"},{"product_id":"blue-vs-red-bootcamp-from-attacker-playbooks-to-defender-detections-carlo-anez-mazurco-mariana-ruiz-dctlv2026","title":"Blue vs Red Bootcamp: From Attacker Playbooks to Defender Detections -  Carlo Anez Mazurco \u0026 Mariana Ruiz - DCTLV2026 **4-day Course - Saturday-Tuesday**","description":"\u003cp dir=\"ltr\"\u003e\u003cmeta charset=\"utf-8\"\u003e\u003cstrong\u003eName of Training\u003c\/strong\u003e\u003cspan\u003e\u003cstrong\u003e:\u003c\/strong\u003e Blue vs Red Bootcamp: From Attacker Playbooks to Defender Detections\u003cbr\u003e\u003c\/span\u003e\u003cstrong\u003eTrainer(s)\u003c\/strong\u003e\u003cspan\u003e\u003cstrong\u003e:\u003c\/strong\u003e Carlo Anez Mazurco \u0026amp; Mariana Ruiz\u003cbr\u003e\u003c\/span\u003e\u003cstrong\u003eDates\u003c\/strong\u003e\u003cspan\u003e\u003cstrong\u003e:\u003c\/strong\u003e August 8-11, 2026 \u003cstrong\u003e**4-day Course**\u003c\/strong\u003e\u003cbr\u003e\u003c\/span\u003e\u003cspan\u003e\u003cstrong\u003eTime:\u003c\/strong\u003e 8\u003c\/span\u003e\u003cspan\u003e:00 am to 5:00 pm \u003cbr\u003e\u003c\/span\u003e\u003cstrong\u003eVenue\u003c\/strong\u003e\u003cspan\u003e\u003cstrong\u003e:\u003c\/strong\u003e \u003cmeta charset=\"utf-8\"\u003eLas Vegas Convention Center\u003cbr\u003e\u003c\/span\u003e\u003cstrong\u003eCost\u003c\/strong\u003e\u003cspan\u003e\u003cstrong\u003e: \u003c\/strong\u003e$4,000 (USD)\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003e\u003cmeta charset=\"utf-8\"\u003e \u003cstrong\u003e**Please note: This four-day training will be held Saturday-Tuesday (August 8-11). Participants will receive a DEF CON Human Badge with their registration*\u003c\/strong\u003e*\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eShort Summary:\u003c\/strong\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003eA fun, beginner‑friendly “blue vs red” immersion built with Blue Team Village (BTV) DNA: learn attacker playbooks from a defender’s perspective, then turn every step into telemetry, detections, and incident reporting with AI to accelerate triage and reasoning. The course culminates in a Project Obsidian‑style mini‑CTF (CTFd) plus a graded incident report and detections mapped to MITRE ATT\u0026amp;CK.\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eCourse Description: \u003c\/strong\u003e\u003c\/p\u003e\n\u003cp\u003eThis four‑day, hands‑on bootcamp is built for aspiring defenders and junior analysts. Students learn the intent behind common Red Team Village‑style tradecraft (initial access → execution → movement → exfiltration), then apply the Blue Team Village workflow: collect evidence, correlate signals, and produce actionable detections and response decisions.\u003c\/p\u003e\n\u003cp\u003eAI is integrated at every stage as a force multiplier summarizing logs, proposing hypotheses, drafting detection logic, and accelerating reporting while students validate outputs against raw evidence. The capstone uses a DEFCON 34‑inspired, Project Obsidian‑style kill chain that includes an AI chatbot abuse track (“Ghost in the Assistant”), so students practice monitoring and defending LLM\/agent systems in a SOC.\u003cbr\u003e\u003c\/p\u003e\n\u003cp\u003e\u003cspan\u003e\u003cstrong\u003eCourse Outline: \u003c\/strong\u003e\u003c\/span\u003e\u003c\/p\u003e\n\u003cp\u003eDay 1 – Foundations: How attacks become signals \u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eOrientation: ethics, lab access, workflow, and success criteria \u003c\/li\u003e\n\u003cli\u003eCore concepts: networking, identity, and common enterprise telemetry \u003c\/li\u003e\n\u003cli\u003eAttack-to-evidence mapping: what each tactic “looks like” in logs and network data \u003c\/li\u003e\n\u003cli\u003eAI-in-the-loop fundamentals: prompt patterns for triage, correlation, and analyst reasoning \u003c\/li\u003e\n\u003cli\u003eLab: investigate a guided “single host + network” incident from provided artifacts; build a timeline \u003c\/li\u003e\n\u003cli\u003eDebrief: write a concise incident summary and key takeaways \u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003eDay 2 – Red Team Basics: Build empathy for the adversary\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eInitial access patterns (phishing, drive‑by, credential misuse) and safe demonstrations \u003c\/li\u003e\n\u003cli\u003eExecution\/persistence basics and what to monitor \u003c\/li\u003e\n\u003cli\u003eLab: artifact analysis (process\/auth\/network) to reconstruct attacker steps \u003c\/li\u003e\n\u003cli\u003eAI lab: extract indicators\/entities, propose hypotheses, and identify missing telemetry \u003c\/li\u003e\n\u003cli\u003eDetection engineering I: writing high-signal queries\/rules; tuning false positives \u003c\/li\u003e\n\u003cli\u003eCheckpoint: mini knowledge check + Q\u0026amp;A \u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003eDay 3 – Blue Team Ops: Hunt, detect, and respond \u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eLateral movement and exfiltration signals (auth anomalies, SMB\/RDP patterns, DNS\/HTTP beacons)\u003c\/li\u003e\n\u003cli\u003ePCAP\/Zeek workflow: fast pivoting, session reconstruction, and file\/hash extraction \u003c\/li\u003e\n\u003cli\u003eLab: threat hunt across provided dataset; identify pivot, scope, and affected assets \u003c\/li\u003e\n\u003cli\u003eAI lab: clustering\/correlation and drafting detection hypotheses with evidence checks \u003c\/li\u003e\n\u003cli\u003eDetection engineering II: convert findings into detections + response playbook steps \u003c\/li\u003e\n\u003cli\u003eCapstone briefing: rules, scoring, graded deliverables rubric \u003cbr\u003e\n\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003eDay 4 – Purple Team + Capstone CTF (Project Obsidian‑style kill chain) \u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eCapstone setup and expectations\u003c\/li\u003e\n\u003cli\u003eCTFd mini‑CTF: investigate multiple “tickets” across the full kill chain, including an AI‑assistant prompt\/agent‑injection defense challenge; points for correct findings + quality of analysis \u003c\/li\u003e\n\u003cli\u003eGraded deliverables: incident report + at least 2 detections (queries\/rules) including one bot\/LLM monitoring rule, all mapped to evidence \u003c\/li\u003e\n\u003cli\u003eRe-test and tune detections for signal quality; bonus points for reductions in false positives \u003c\/li\u003e\n\u003cli\u003ePresent‑outs: short briefing to a SOC lead \/ manager persona \u003c\/li\u003e\n\u003cli\u003eWrap‑up: take‑home lab pack + roadmap for next steps \u003cbr\u003e\n\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eDifficulty Level:\u003c\/strong\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003eBeginner - The student has an interest in the topic presented and general technology knowledge that a power user or undergraduate student may have acquired.\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eSuggested Prerequisites:\u003c\/strong\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003eRequired: general technology comfort (files\/folders, browser, basic troubleshooting).\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003eHelpful (not required): basic networking (IP\/DNS\/HTTP) and basic Linux\/Windows navigation.\u003cbr\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003ePre‑work (required): a 20–30 minute environment readiness checklist (Docker\/WSL2\/VM) completed before Day 1.\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eWhat Students Should Bring: \u003c\/strong\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003eA laptop capable of running labs via Docker (preferred) or a VM:\u003c\/p\u003e\n\u003cul\u003e\n\u003cli dir=\"ltr\"\u003e16 GB RAM minimum (32 GB recommended)\u003c\/li\u003e\n\u003cli dir=\"ltr\"\u003e4‑core CPU minimum (8 cores recommended)\u003c\/li\u003e\n\u003cli dir=\"ltr\"\u003eMinimum of 120 GB free disk space.\u003c\/li\u003e\n\u003cli dir=\"ltr\"\u003eWindows 11 with WSL2, macOS, or Linux\u003c\/li\u003e\n\u003cli dir=\"ltr\"\u003eDocker Desktop installed (or VMware\/VirtualBox)\u003c\/li\u003e\n\u003cli dir=\"ltr\"\u003eAbility to import VM images and\/or pull Docker containers; local admin rights strongly recommended\u003c\/li\u003e\n\u003cli dir=\"ltr\"\u003ePower supply and a modern browser\u003cbr\u003e\n\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eWhat the Trainer Will Provide:\u003c\/strong\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003ePrebuilt lab images and container bundles, including downloadable VM images and offline fallback artifacts for troubleshooting and post-course practice.\u003c\/li\u003e\n\u003cli\u003eCurated investigation datasets for each module, including PCAPs, Zeek-style logs, endpoint and authentication telemetry, and capstone artifacts.\u003c\/li\u003e\n\u003cli\u003eStudent materials in PDF format, including the workbook, lab guides, cheat sheets, reporting templates, sample incident reports, and optional extra practice labs.\u003c\/li\u003e\n\u003cli\u003eLab access throughout the training, plus LMS access to guides, walkthroughs, and reference materials.\u003c\/li\u003e\n\u003cli\u003eA post-training toolkit with curated open-source tools, scripts, and guided follow-on exercises for continued practice.\u003c\/li\u003e\n\u003cli\u003eA CTFd instance for the capstone, along with a scoring rubric that rewards validated findings, analysis quality, and detection outcomes.\u003c\/li\u003e\n\u003cli\u003eDetection engineering resources, including example Sigma rules and sample EQL\/KQL queries for investigation, hunting, and alerting exercises.\u003c\/li\u003e\n\u003cli\u003eAccess to selected course repositories containing playbooks, scripts, and supporting automation used in the training.\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cstrong\u003eTrainer(s) Bio:\u003c\/strong\u003e\u003c\/p\u003e\n\u003cp\u003e\u003cstrong\u003eCarlo Anez Mazurco\u003c\/strong\u003e is a Lead Cybersecurity Subject Matter Expert at DataMachines Corp with 18+ years in cyber defense, threat hunting, incident response, and security engineering. He contributes to applied AI efforts that accelerate SOC workflows, triage, correlation, detection engineering, and reporting while keeping analysts accountable to evidence.\u003c\/p\u003e\n\u003cp\u003eCarlo is an active DEFCON community member: a Blue Team Village (BTV) member, DEFCON speaker (“CTI 101: Leveling Up Threat Intel with AI”), and contributor to Blue Team Village CTF engineering (Project Obsidian). His training style is practical, collaborative, and focused on turning concepts into detections and decisions students can use immediately.\u003c\/p\u003e\n\u003cp\u003eCarlo is currently a Lead Cybersecurity Instructor with Educate360 \/ TCM Security Academy, where he teaches hands-on courses preparing students for SOC, DFIR, and penetration testing roles. His instruction emphasizes real-world telemetry, adversary tradecraft, and defender workflows.\u003c\/p\u003e\n\u003cp\u003ePreviously, Carlo served as a Lead Cybersecurity Instructor for the University of Michigan Nexus program for 5 years, delivering applied cybersecurity education and incorporating AI-driven learning techniques to enhance adult learning and engagement.\u003c\/p\u003e\n\u003cp\u003eIn addition, Carlo has supported enterprise security and cyber risk initiatives similar to IronCircle-style defensive and resilience programs. He is the creator of the IgniteCyber OpenSOC project and a core contributor to Project Obsidian, where he designs realistic Blue Team CTF kill chains using Zeek, PCAPs, identity telemetry, and AI-assisted analysis.\u003c\/p\u003e\n\u003cp\u003e\u003cstrong\u003eMariana Ruiz de Streuhhofer\u003c\/strong\u003e is a WiCyS mentor with an M.S. in Cybersecurity (UMBC, 2024) and a Post‑Master’s Certificate in Cybersecurity Operations (UMBC, 2023). She brings hands‑on blue‑team tooling experience (Wireshark, Splunk, Suricata, Zeek, NetworkMiner, CyberChef, Nmap) and an operations mindset grounded in practical investigation workflows.\u003c\/p\u003e\n\u003cp\u003eMariana also brings extensive program and project delivery experience (Scrum Master, Product Owner, PRINCE2, ITIL, SAFe Scrum Master) and community engagement through WiCyS and ISACA volunteering, supporting smooth lab execution, troubleshooting, and consistent student feedback during hands‑on work.\u003cbr\u003e\u003c\/p\u003e\n\u003cp\u003e\u003cspan style=\"text-decoration: underline;\"\u003eSocial media and online publications\u003c\/span\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eLinkedIn: \u003ca href=\"https:\/\/www.linkedin.com\/in\/carloanez\/\"\u003ehttps:\/\/www.linkedin.com\/in\/carloanez\/\u003c\/a\u003e\u003c\/p\u003e\n\u003c\/li\u003e\n\u003cli\u003e\n\u003cp\u003eWebsite: \u003ca href=\"https:\/\/carloanez.com\/\"\u003ehttps:\/\/carloanez.com\/\u003c\/a\u003e\u003c\/p\u003e\n\u003c\/li\u003e\n\u003cli\u003e\n\u003cp\u003eIgniteCyber Academy: \u003ca href=\"https:\/\/ignitecyber.academy\/\"\u003ehttps:\/\/ignitecyber.academy\u003c\/a\u003e\u003c\/p\u003e\n\u003c\/li\u003e\n\u003cli\u003e\n\u003cp\u003eIgniteCyber \/ OpenSOC Labs: \u003ca href=\"https:\/\/github.com\/carloanez\/IgniteCyber-OpenSOC\"\u003ehttps:\/\/github.com\/carloanez\/IgniteCyber-OpenSOC\u003c\/a\u003e\u003c\/p\u003e\n\u003c\/li\u003e\n\u003cli\u003e\n\u003cp\u003eDiscord Community: \u003cspan\u003e\u003ca href=\"https:\/\/discord.gg\/QCErFvmd8y\" rel=\"noreferrer nofollow noopener\" target=\"_blank\"\u003ehttps:\/\/discord.gg\/QCErFvmd8y\u003c\/a\u003e\u003c\/span\u003e\u003c\/p\u003e\n\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eProficiency Exam Option:\u003c\/strong\u003e\u003c\/p\u003e\n\u003cp\u003e\u003cmeta charset=\"utf-8\"\u003eThis course has the option for a proficiency certificate add-on. \u003c\/p\u003e\n\u003cp\u003eStudents who select the proficiency add-on complete an additional graded capstone assessment. To pass, they must achieve at least 70% on the rubric and submit all required deliverables: validated capstone findings, a concise incident report, and at least 2 functional detections, including 1 bot\/LLM monitoring rule mapped to evidence from the exercise.\u003c\/p\u003e\n\u003cp\u003eStudents who pass receive a DEF CON Training Certificate of Proficiency. Eligible participants may also receive an IgniteCyber Academy digital badge, and top performers may be recognized with a challenge coin.\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003ePlease reach out to training@defcon.org for any questions related to the proficiency exam and certificate option.\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eAdditional Information:\u003c\/strong\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003eStudents also receive post-training support through IgniteCyber Academy, including follow-on exercises, offline lab assets, detection engineering examples, and Discord community access to support continued practice: \u003ca href=\"https:\/\/discord.gg\/QCErFvmd8y\"\u003ehttps:\/\/discord.gg\/QCErFvmd8y\u003c\/a\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eRegistration Terms and Conditions: \u003c\/strong\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eTrainings are refundable before July 11, 2026, minus a non-refundable processing fee of $250.\u003c\/span\u003e\u003cspan\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eBetween July 11, 2026 and August 5, 2026 partial refunds will be granted, equal to 50% of the course fee minus a processing fee of $250.\u003c\/span\u003e\u003cspan\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eAll trainings are non-refundable after August 5, 2026.\u003c\/span\u003e\u003cspan\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eTraining tickets may be transferred to another student. Please email us at training@defcon.org for specifics.\u003c\/span\u003e\u003cspan\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eIf a training does not reach the minimum registration requirement, it may be cancelled. In the event the training you choose is cancelled, you will be provided the option of receiving a full refund or transferring to another training (subject to availability).\u003c\/span\u003e\u003cspan\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eFailure to attend the training without prior written notification will be considered a no-show. No refund will be given.\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eDEF CON Training may share student contact information, including names and emails, with the course instructor(s) to facilitate sharing of pre-work and course instructions. Instructors are required to safeguard this information and provide appropriate protection so that it is kept private. Instructors may not use student information outside the delivery of this course without the permission of the student.\u003c\/span\u003e\u003cspan\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eBy purchasing this ticket you agree to abide by the \u003c\/span\u003e\u003ca href=\"https:\/\/defcon.org\/html\/links\/dc-code-of-conduct.html\"\u003e\u003cspan\u003eDEF CON Training Code of Conduct\u003c\/span\u003e\u003c\/a\u003e\u003cspan\u003e and the registration terms and conditions listed above.\u003c\/span\u003e\u003cspan\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eSeveral breaks will be included throughout the day. Please note that food is not included.\u003c\/span\u003e\u003cspan\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eAll courses come with a certificate of completion, contingent upon attendance at all course sessions. Some courses offer an option to upgrade to a certificate of proficiency, which requires an additional purchase and sufficient performance on an end-of-course evaluation.\u003c\/span\u003e\u003c\/p\u003e","brand":"Las Vegas 2026","offers":[{"title":"Course only - Aug 8-11 (includes DEF CON Human Badge)","offer_id":47688632107226,"sku":null,"price":4000.0,"currency_code":"USD","in_stock":true},{"title":"Course + Proficiency Exam - Aug 8-11 (includes DEF CON Human Badge)","offer_id":47688632139994,"sku":null,"price":4300.0,"currency_code":"USD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0629\/2088\/4442\/files\/defcon-blue-vs-red-carlo-mariana-v2square.jpg?v=1774883548"},{"product_id":"full-stack-pentesting-laboratory-100-hands-on-lifetime-lab-access-dawid-czagan-dctlv2026","title":"Full-Stack Pentesting Laboratory: 100% Hands-On + Lifetime LAB Access - Dawid Czagan - DCTLV2026 **Saturday-Sunday Course**","description":"\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eName of Training\u003c\/strong\u003e\u003cspan\u003e\u003cstrong\u003e: \u003c\/strong\u003eFull-Stack Pentesting Laboratory: 100% Hands-On + Lifetime LAB Access\u003cbr\u003e\u003c\/span\u003e\u003cstrong\u003eTrainer(s)\u003c\/strong\u003e\u003cspan\u003e\u003cstrong\u003e:\u003c\/strong\u003e Dawid Czagan\u003cbr\u003e\u003c\/span\u003e\u003cstrong\u003eDates\u003c\/strong\u003e\u003cspan\u003e\u003cstrong\u003e:\u003c\/strong\u003e \u003cmeta charset=\"utf-8\"\u003eAugust 8-9, 2026 \u003cstrong\u003e**Saturday-Sunday Training**\u003c\/strong\u003e\u003cbr\u003e\u003c\/span\u003e\u003cspan\u003e\u003cstrong\u003eTime:\u003c\/strong\u003e 8\u003c\/span\u003e\u003cspan\u003e:00 am to 5:00 pm \u003cbr\u003e\u003c\/span\u003e\u003cstrong\u003eVenue\u003c\/strong\u003e\u003cspan\u003e\u003cstrong\u003e:\u003c\/strong\u003e \u003cmeta charset=\"utf-8\"\u003eLas Vegas Convention Center\u003cbr\u003e\u003c\/span\u003e\u003cstrong\u003eCost\u003c\/strong\u003e\u003cspan\u003e\u003cstrong\u003e: \u003c\/strong\u003e$2,750 (USD)\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003e\u003cmeta charset=\"utf-8\"\u003e \u003cstrong\u003e**Please note: This two-day training will be offered on Saturday and Sunday (August 8-9). Participants will receive a DEF CON Human Badge with their registration*\u003c\/strong\u003e*\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eShort Summary:\u003c\/strong\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003eMaster full-stack pentesting to identify, exploit, and understand vulnerabilities across today’s complex IT systems—100% hands-on. Apply offensive techniques in enterprise or red-team operations, recommend defensive mitigations, and take home a complete lab environment for continued practice.\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eCourse Description: \u003c\/strong\u003e\u003c\/p\u003e\n\u003cp\u003e### Overview ###\u003c\/p\u003e\n\u003cp\u003eModern IT systems are increasingly complex, making full-stack expertise more essential than ever. That's why diving into full-stack pentesting (including red team techniques) is crucial—you will gain the skills needed to master modern attack vectors and implement effective defensive countermeasures.\u003c\/p\u003e\n\u003cp\u003eFor each attack, vulnerability and technique presented in this training, there is a lab exercise to help you develop your skills step by step. What's more, when the training is over, you can take the complete lab environment home to hack again at your own pace.\u003c\/p\u003e\n\u003cp\u003eI found security bugs in many companies including Google, Yahoo, Mozilla, Twitter and in this training I'll share my experience with you.\u003c\/p\u003e\n\u003cp\u003e### Key Learning Objectives ###\u003c\/p\u003e\n\u003cp\u003eAfter completing this training, you will have learned about:\u003c\/p\u003e\n\u003cp\u003e-    Hacking cloud applications\u003cbr\u003e-    API hacking tips \u0026amp; tricks\u003cbr\u003e-    Data exfiltration techniques\u003cbr\u003e-    OSINT asset discovery tools\u003cbr\u003e-    Tricky user impersonation\u003cbr\u003e-    Bypassing protection mechanisms\u003cbr\u003e-    CLI hacking scripts\u003cbr\u003e-    Interesting XSS attacks\u003cbr\u003e-    Server-side template injection\u003cbr\u003e-    Hacking with Google \u0026amp; GitHub search engines\u003cbr\u003e-    Automated SQL injection detection and exploitation\u003cbr\u003e-    File read \u0026amp; file upload attacks\u003cbr\u003e-    Password cracking in a smart way\u003cbr\u003e-    Hacking Git repos\u003cbr\u003e-    XML attacks\u003cbr\u003e-    NoSQL injection\u003cbr\u003e-    HTTP parameter pollution\u003cbr\u003e-    Web cache deception attack\u003cbr\u003e-    Hacking with wrappers\u003cbr\u003e-    Finding metadata with sensitive information\u003cbr\u003e-    Hijacking NTLM hashes\u003cbr\u003e-    Automated detection of JavaScript libraries with known vulnerabilities\u003cbr\u003e-    Extracting passwords\u003cbr\u003e-    Hacking Electron applications\u003cbr\u003e-    Establishing reverse shell connections\u003cbr\u003e-    RCE attacks\u003cbr\u003e-    XSS polyglot\u003cbr\u003e-    and more …\u003c\/p\u003e\n\u003cp\u003e### What Students Say About My Training Courses ###\u003c\/p\u003e\n\u003cp\u003eRecommendations are available on my LinkedIn profile (https:\/\/www.linkedin.com\/in\/dawid-czagan-85ba3666\/). They can also be found here: https:\/\/silesiasecuritylab.com\/services\/training\/#opinions – training participants from companies such as Oracle, Adobe, ESET, ING, Red Hat, Trend Micro, Philips, government sector, ...\u003cbr\u003e\u003c\/p\u003e\n\u003cp\u003e\u003cspan\u003e\u003cstrong\u003eCourse Outline: \u003c\/strong\u003e\u003c\/span\u003e\u003c\/p\u003e\n\u003cp\u003e### Day 1 ###\u003c\/p\u003e\n\u003cp\u003e1) Hacking cloud applications \u003cbr\u003e-    Amazon S3: directory listing via AWS CLI tool\u003cbr\u003e-    Amazon S3: bruteforcing buckets\u003cbr\u003e-    Amazon S3: bruteforcing objects in a given bucket\u003cbr\u003e-    Amazon EC2: reading the SecretAccessKey (3 techniques)\u003cbr\u003e-    Bypassing Cloudflare firewall\u003c\/p\u003e\n\u003cp\u003e2) API hacking tips \u0026amp; tricks \u003cbr\u003e-    API hacking with X-HTTP-Method-Override\u003cbr\u003e-    API hacking with JSON enforcement (in request)\u003cbr\u003e-    API hacking with JSON enforcement (in response)\u003c\/p\u003e\n\u003cp\u003e3) OSINT asset discovery tools \u003cbr\u003e-    Subdomain enumeration with dnscan and amass\u003cbr\u003e-    Subdomain enumeration with Certificate Transparency log\u003cbr\u003e-    Domain enumeration with NerdyData search engine\u003c\/p\u003e\n\u003cp\u003e4) Hacking with special characters \u003cbr\u003e-    Visual impersonation with Unicode control characters\u003cbr\u003e-    XSS via response splitting\u003c\/p\u003e\n\u003cp\u003e5) XML attacks \u003cbr\u003e-    XML External Entity attack (XXE)\u003cbr\u003e-    XML XInclude attack\u003c\/p\u003e\n\u003cp\u003e6) Server-side template injection (SSTI) \u003cbr\u003e-    RCE via template injection in PHP Smarty\u003cbr\u003e-    RCE via template injection in Python Jinja\u003cbr\u003e-    RCE via template injection in Java FreeMarker\u003c\/p\u003e\n\u003cp\u003e7) Hacking git repos \u003cbr\u003e-    gitleaks (finding sensitive data based on regular expressions)\u003cbr\u003e-    trufflehog (finding sensitive data based on entropy checking)\u003cbr\u003e\u003c\/p\u003e\n\u003cp\u003e8) Google hacking techniques \u003cbr\u003e-    finding directory listings\u003cbr\u003e-    finding SQL syntax errors\u003cbr\u003e-    finding URLs with API keys\u003c\/p\u003e\n\u003cp\u003e9) Automated SQL injection detection and exploitation \u003cbr\u003e-    sqlmap: full test case coverage, dumping database table entries\u003cbr\u003e-    sqlmap: installing a backdoor (from SQL injection to remote code execution)\u003c\/p\u003e\n\u003cp\u003e10) File read attacks \u003cbr\u003e-    Alternate Data Streams notation\u003cbr\u003e-    8dot3 notation\u003cbr\u003e-    Windows NTFS\u003c\/p\u003e\n\u003cp\u003e11) Operational toolkit \u003cbr\u003e-    Retire.js: finding JavaScript libraries with known vulnerabilities\u003cbr\u003e-    Extracting passwords with LaZagne\u003cbr\u003e-    NTLM hash hijacking with Responder\u003c\/p\u003e\n\u003cp\u003e\u003cbr\u003e### Day 2 ###\u003c\/p\u003e\n\u003cp\u003e1) Data exfiltration tools and techniques\u003cbr\u003e-    DNS exfiltration using dnscat2\u003cbr\u003e-    ICMP exfiltration using Data Exfiltration Toolkit\u003cbr\u003e-    image-based steganography exfiltration using LSBSteg\u003c\/p\u003e\n\u003cp\u003e2) GitHub hacking techniques \u003cbr\u003e-    web config files\u003cbr\u003e-    database config files\u003cbr\u003e-    private keys\u003c\/p\u003e\n\u003cp\u003e3) Smart password cracking with hashcat \u003cbr\u003e-    cracking NTLM password\u003cbr\u003e-    cracking password-protected PDF document\u003cbr\u003e-    benchmarking\u003c\/p\u003e\n\u003cp\u003e4) File upload attacks \u003cbr\u003e-    via .htaccess\u003cbr\u003e-    via SVG file\u003cbr\u003e-    via AddHandler\u003c\/p\u003e\n\u003cp\u003e5) CLI hacking scripts \u003cbr\u003e-    using waybackurls\u003cbr\u003e-    using photon\u003c\/p\u003e\n\u003cp\u003e6) Hacking with wrappers\u003cbr\u003e-    RCE with data: wrapper\u003cbr\u003e-    RCE with zip: wrapper\u003c\/p\u003e\n\u003cp\u003e7) NoSQL injection detection and exploitation\u003cbr\u003e-    Elasticsearch\u003cbr\u003e-    MongoDB\u003c\/p\u003e\n\u003cp\u003e8) Modern full-stack web attacks \u003cbr\u003e-    HTTP parameter pollution\u003cbr\u003e-    Web cache deception attack\u003c\/p\u003e\n\u003cp\u003e9) Hacking Electron applications \u003cbr\u003e-    Electron attack surface\u003cbr\u003e-    from XSS to RCE\u003cbr\u003e-    from insecure framing to RCE\u003c\/p\u003e\n\u003cp\u003e10) Additional techniques \u003cbr\u003e-    Finding metadata with exiftool\u003cbr\u003e-    Reverse shell connection with ShellPop\u003cbr\u003e-    XSS polyglot\u003c\/p\u003e\n\u003cp\u003e11) Q\u0026amp;A session \u003cbr\u003e\u003c\/p\u003e\n\u003cp\u003e12) Certificate of proficiency exam\u003cbr\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eDifficulty Level:\u003c\/strong\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cmeta charset=\"utf-8\"\u003eIntermediate \u003cspan\u003e- The student has education and some experience in the field and familiarity with the topic being presented. The student has foundational knowledge that the course will leverage to provide practical skills on the topic.\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eSuggested Prerequisites:\u003c\/strong\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003eTo get the most of this training intermediate knowledge of pentesting and web application security is needed. Students should have experience in using a proxy, such as Burp Suite Proxy, or similar, to analyze or modify the traffic.\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eWhat Students Should Bring: \u003c\/strong\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003eStudents will need a laptop with 64-bit operating system, at least 8 GB RAM, 35 GB free hard drive space, administrative access, ability to turn off AV\/firewall and VMware Player\/Fusion installed (64-bit version). Prior to the training, make sure there are no problems with running x86_64 VMs.\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eWhat the Trainer Will Provide:\u003c\/strong\u003e\u003c\/p\u003e\n\u003cp\u003eStudents will be handed in a VMware image with a specially prepared lab environment to play with all attacks, vulnerabilities and techniques presented in this training. When the training is over, students can take the complete lab environment home (after signing a non-disclosure agreement) to hack again at their own pace.\u003c\/p\u003e\n\u003cp\u003e### Special Bonus ###\u003c\/p\u003e\n\u003cp\u003eThe ticket price includes free access to my 6 video courses:\u003c\/p\u003e\n\u003cp\u003e-    Fuzzing with Burp Suite Intruder\u003cbr\u003e-    Exploiting Race Conditions with OWASP ZAP\u003cbr\u003e-    Case Studies of Award-Winning XSS Attacks: Part 1\u003cbr\u003e-    Case Studies of Award-Winning XSS Attacks: Part 2\u003cbr\u003e-    How Hackers Find SQL Injections in Minutes with Sqlmap\u003cbr\u003e-    Web Application Security Testing with Google Hacking\u003cbr\u003e\u003c\/p\u003e\n\u003cp\u003e\u003cstrong\u003eTrainer(s) Bio:\u003c\/strong\u003e\u003c\/p\u003e\n\u003cp\u003e\u003cstrong\u003eDawid Czagan\u003c\/strong\u003e is an internationally recognized security researcher and trainer. He is listed among top hackers at HackerOne. Dawid Czagan has found security bugs at Apple, Google, Mozilla, Microsoft and many others. Due to the severity of many bugs, he received numerous awards for his findings.\u003c\/p\u003e\n\u003cp\u003eDawid Czagan shares his offensive security experience through his hands-on training courses. He has delivered training sessions at key industry conferences such as DEF CON (Las Vegas), OWASP Global AppSec EU (Barcelona), Hack In The Box (Amsterdam), CanSecWest (Vancouver), 44CON (London), Hack In Paris (Paris), NorthSec (Montreal), HITB+CyberWeek (Abu Dhabi) and for many corporate clients. His students include security specialists from Oracle, Adobe, ESET, ING, Red Hat, Trend Micro, Philips and government sector (recommendations are available on Dawid Czagan's LinkedIn profile (https:\/\/www.linkedin.com\/in\/dawid-czagan-85ba3666\/). They can also be found here: https:\/\/silesiasecuritylab.com\/services\/training\/#opinions).\u003c\/p\u003e\n\u003cp\u003eDawid Czagan is the founder and CEO at Silesia Security Lab. To find out about the latest in his work, you are invited to subscribe to his newsletter (https:\/\/silesiasecuritylab.com\/newsletter) and follow him on Twitter (@dawidczagan), YouTube (https:\/\/www.youtube.com\/channel\/UCG-sIlaM1xXmetFtEfqtOqg), and LinkedIn (https:\/\/www.linkedin.com\/in\/dawid-czagan-85ba3666\/).\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eProficiency Exam Option:\u003c\/strong\u003e\u003c\/p\u003e\n\u003cp\u003e\u003cmeta charset=\"utf-8\"\u003eThis course has the option for a proficiency certificate add-on. \u003c\/p\u003e\n\u003cp\u003eAfter completing the course, students may take a real-world, scenario-based exam that assesses practical skills. The exam is materials-permitted\u003cspan class=\"\"\u003e—\u003c\/span\u003estudents may use all course materials and notes. A minimum score of 65% is required to pass. Each student will receive feedback on their performance.\u003cbr\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003ePlease reach out to training@defcon.org for any questions related to the proficiency exam and certificate option.\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eRegistration Terms and Conditions: \u003c\/strong\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eTrainings are refundable before July 11, 2026, minus a non-refundable processing fee of $250.\u003c\/span\u003e\u003cspan\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eBetween July 11, 2026 and August 5, 2026 partial refunds will be granted, equal to 50% of the course fee minus a processing fee of $250.\u003c\/span\u003e\u003cspan\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eAll trainings are non-refundable after August 5, 2026.\u003c\/span\u003e\u003cspan\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eTraining tickets may be transferred to another student. Please email us at training@defcon.org for specifics.\u003c\/span\u003e\u003cspan\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eIf a training does not reach the minimum registration requirement, it may be cancelled. In the event the training you choose is cancelled, you will be provided the option of receiving a full refund or transferring to another training (subject to availability).\u003c\/span\u003e\u003cspan\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eFailure to attend the training without prior written notification will be considered a no-show. No refund will be given.\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eDEF CON Training may share student contact information, including names and emails, with the course instructor(s) to facilitate sharing of pre-work and course instructions. Instructors are required to safeguard this information and provide appropriate protection so that it is kept private. Instructors may not use student information outside the delivery of this course without the permission of the student.\u003c\/span\u003e\u003cspan\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eBy purchasing this ticket you agree to abide by the \u003c\/span\u003e\u003ca href=\"https:\/\/defcon.org\/html\/links\/dc-code-of-conduct.html\"\u003e\u003cspan\u003eDEF CON Training Code of Conduct\u003c\/span\u003e\u003c\/a\u003e\u003cspan\u003e and the registration terms and conditions listed above.\u003c\/span\u003e\u003cspan\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eSeveral breaks will be included throughout the day. Please note that food is not included.\u003c\/span\u003e\u003cspan\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eAll courses come with a certificate of completion, contingent upon attendance at all course sessions. Some courses offer an option to upgrade to a certificate of proficiency, which requires an additional purchase and sufficient performance on an end-of-course evaluation.\u003c\/span\u003e\u003c\/p\u003e","brand":"Las Vegas 2026","offers":[{"title":"Course only - Aug 8-9 (includes DEF CON Human Badge)","offer_id":47695958180058,"sku":null,"price":2750.0,"currency_code":"USD","in_stock":true},{"title":"Course + Proficiency Exam - Aug 8-9 (includes DEF CON Human Badge)","offer_id":47695958212826,"sku":null,"price":3050.0,"currency_code":"USD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0629\/2088\/4442\/files\/DawidCzagan_image.jpg?v=1683920469"},{"product_id":"digital-supply-chain-security-software-cryptography-ai-and-vendor-risk-anant-shrivastava-dctlv2026","title":"Digital Supply Chain Security: Software, Cryptography, AI, and Vendor Risk - Anant Shrivastava \u0026 Sunil Yadav - DCTLV2026 **1-day Course - Friday**","description":"\u003cp dir=\"ltr\"\u003e\u003cmeta charset=\"utf-8\"\u003e\u003cstrong\u003eName of Training\u003c\/strong\u003e\u003cspan\u003e\u003cstrong\u003e:\u003c\/strong\u003e Digital Supply Chain Security: Software, Cryptography, AI, and Vendor Risk\u003cbr\u003e\u003c\/span\u003e\u003cstrong\u003eTrainer(s)\u003c\/strong\u003e\u003cspan\u003e\u003cstrong\u003e: \u003c\/strong\u003eAnant Shrivastava and Sunil Yadav\u003cbr\u003e\u003c\/span\u003e\u003cspan\u003e\u003cmeta charset=\"utf-8\"\u003e \u003cstrong\u003eDates\u003c\/strong\u003e\u003cstrong\u003e:\u003c\/strong\u003e \u003cmeta charset=\"utf-8\"\u003eAugust 7, 2026 \u003cstrong\u003e**1-day course**\u003c\/strong\u003e\u003cbr\u003e\u003cstrong\u003eTime:\u003c\/strong\u003e 8:00 am to 5:00 pm \u003cbr\u003e\u003cstrong\u003eVenue\u003c\/strong\u003e\u003cstrong\u003e:\u003c\/strong\u003e \u003cmeta charset=\"utf-8\"\u003eLas Vegas Convention Center\u003cbr\u003e\u003c\/span\u003e\u003cstrong\u003eCost\u003c\/strong\u003e\u003cspan\u003e\u003cstrong\u003e: \u003c\/strong\u003e$1,500\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003e\u003cmeta charset=\"utf-8\"\u003e \u003cstrong\u003e**Please note: This one-day training will be held Friday, August 7. Participants will receive a DEF CON Human Badge with their registration*\u003c\/strong\u003e*\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eShort Summary:\u003c\/strong\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003eThis course takes practitioners inside real supply chain attack chains, from compromised packages to tampered upstream artifacts to abused third-party integrations, and teaches how to technically verify what upstream dependencies actually ship. Students will work hands-on with provenance verification, runtime detection, inherited risk analysis, and practical defense implementation to develop skills that go beyond policy documents and questionnaires.\u003cbr\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eCourse Description:\u003c\/strong\u003e\u003c\/p\u003e\n\u003cp\u003eSupply chain attacks succeed because they exploit trust: in packages, in integrations, and in the assumption that upstream components are safe. This course breaks down how those attacks work at a technical level, using real case studies including SolarWinds, xz Utils, Log4Shell, and 3CX to reconstruct how small trust failures chain into full organizational compromise. Each attack is examined not just for what happened but for where verification would have caught it. Throughout the course, demos and guided exercises reinforce each module: writing detection rules against real malicious packages, analyzing a third-party software delivery to find undisclosed dependencies and inherited cryptographic weaknesses, and deploying runtime detection to catch anomalous behavior from supply chain components.\u003c\/p\u003e\n\u003cp\u003eThis is not a risk management or governance course. It is built for security practitioners who need to technically verify supply chain components and build detection capabilities in their own environments.\u003c\/p\u003e\n\u003cp\u003e\u003cspan\u003e\u003cmeta charset=\"utf-8\"\u003e \u003cstrong\u003eCourse Outline: \u003c\/strong\u003e\u003c\/span\u003e\u003c\/p\u003e\n\u003cp\u003e\u003cspan style=\"text-decoration: underline;\"\u003eModule 1: Anatomy of Supply Chain Attack Chains\u003c\/span\u003e\u003c\/p\u003e\n\u003cp\u003eHow real supply chain compromises unfold end-to-end. Technical reconstruction of major incidents: SolarWinds (build pipeline injection leading to signed malicious updates), xz Utils (long-term social engineering into maintainer trust leading to backdoored compression library), Log4Shell (transitive dependency exploitation at internet scale), and 3CX (multi-stage supply chain compromise through a compromised upstream vendor). For each case, we map the kill chain, identify where trust was abused, and pinpoint where technical verification would have broken the attack. Students reconstruct attack chains using build logs and artifact signatures, and build a supply chain attack taxonomy they reference throughout the course.\u003c\/p\u003e\n\u003cp\u003e\u003cspan style=\"text-decoration: underline;\"\u003eModule 2: Package Ecosystem Attacks and Detection Engineering\u003c\/span\u003e\u003c\/p\u003e\n\u003cp\u003eDeep technical dive into how attackers weaponize package ecosystems. Covers typosquatting, dependency confusion, namespace hijacking, maintainer account takeover, and hidden capability abuse in legitimate-looking packages. For each attack pattern, students learn the corresponding detection approach: behavioral analysis of package capabilities, pattern-based rules for identifying malicious install scripts, permission analysis to flag over-privileged dependencies, and monitoring techniques for spotting outbound communication, filesystem access, and credential harvesting during package installation. Students write detection rules and test them against a curated set of real malicious packages, then build a detection pipeline that flags suspicious package behavior during installation.\u003c\/p\u003e\n\u003cp\u003e\u003cspan style=\"text-decoration: underline;\"\u003eModule 3: Inherited Risk Analysis — What Upstream Software Actually\u003c\/span\u003e\u003c\/p\u003e\n\u003cp\u003eHands-on verification of what upstream dependencies and third-party software actually deliver versus what is claimed. Students work with real software inventories to identify vulnerable, abandoned, or undisclosed transitive dependencies. They analyze cryptographic configurations to find inherited weaknesses such as deprecated algorithms, weak key lengths, and hardcoded secrets. They examine AI component metadata to trace model provenance, dataset lineage, and hidden upstream dependencies. Students take a real third-party software delivery, identify undisclosed transitive dependencies, score its inventory quality, detect tampering, and cross-reference contents against known vulnerability databases to produce a gap analysis between what is claimed and what is actually shipped.\u003c\/p\u003e\n\u003cp\u003e\u003cspan style=\"text-decoration: underline;\"\u003eModule 4: Building Supply Chain Defenses That Work\u003c\/span\u003e\u003c\/p\u003e\n\u003cp\u003ePutting detection and verification into practice. Covers provenance verification to validate that upstream artifacts have not been tampered with between source and delivery. Covers runtime behavioral monitoring to detect anomalous behavior from supply chain components in production, including unexpected network calls, filesystem access, and privilege escalation from third-party code. Students implement provenance verification workflows, set up admission controls that gate deployments on verified attestations, build package governance policies that enforce capability restrictions, and design monitoring for secrets exposure during build and deployment. Students deploy runtime detection rules to catch supply chain anomalies in a running container, configure admission controls to block unverified artifacts, and assemble these into a technical supply chain defense playbook that connects package analysis, inherited risk verification, and runtime detection into a continuous verification workflow.\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eDifficulty Level:\u003c\/strong\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp\u003eIntermediate - The student has education and some experience in the field and familiarity with the topic being presented. The student has foundational knowledge that the course will leverage to provide practical skills on the topic.\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eSuggested Prerequisites:\u003c\/strong\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e- Basic understanding of security concepts like vulnerabilities, access control, and how the internet works\u003cbr\u003e- Comfortable using the command line on any platform\u003cbr\u003e- GitHub or Bitbucket account (free, instructions sent before class)\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eWhat Students Should Bring: \u003c\/strong\u003e\u003c\/p\u003e\n\u003cp\u003e- A laptop with a modern web browser\u003cbr\u003e- Reliable internet access with standard web access available\u003cbr\u003e- Administrative access to the laptop in case troubleshooting is needed\u003cbr\u003e- The ability to temporarily disable host controls such as HIDS or host firewall software if they interfere with labs\u003cbr\u003e- A free GitHub or Bitbucket account, if requested in pre-class instructions\u003cbr\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eWhat the Trainer Will Provide:\u003c\/strong\u003e\u003cstrong\u003e\u003c\/strong\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e- Live documentation portal during class with exercise details and step-by-step instructions\u003cbr\u003e- Slide deck covering all modules\u003cbr\u003e- Post-class reference pack including the risk taxonomy, xBOM audit checklist, and vendor capability assessment template\u003cbr\u003e- Browser-based lab environment and guided demonstrations\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eTrainer(s) Bio:\u003c\/strong\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eAnant Shrivastava \u003c\/strong\u003eis the founder of Cyfinoid Research and a long-time offensive security practitioner with a focus on application, cloud, and supply chain security. He has delivered trainings and talks at Black Hat USA, Black Hat Europe, Black Hat Asia, Nullcon, c0c0n, BSides, Rootconf, and other events. He also runs projects such as Hacking Archives of India, with a strong focus on documenting and highlighting real work from the security community. His courses are built from consulting, red team, and research experience, with an emphasis on attack chains that show up in real environments and defenses teams can apply immediately.\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eSunil Yadav\u003c\/strong\u003e is the founder and head of cybersecurity at X-Biz TechVentures. He has spent nearly two decades in cybersecurity across offensive security, application security, product security, and research. He has trained audiences on advanced web hacking and application security at Black Hat USA, Black Hat Europe, OWASP AppSec, and DEF CON. He has published CVEs, built AI-driven cybersecurity and computer vision products, and worked across areas such as supply chain security, attack surface management, API security, vulnerability management, compliance, fraud detection, AI document systems, and secure payments. He is also actively involved in shaping approaches around XBOMs and third-party risk management.\u003cstrong\u003e\u003c\/strong\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eProficiency Exam Option:\u003c\/strong\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003eThis course has the option for a proficiency certificate add-on. \u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003eProficiency is evaluated through a CFT-Style exam. Students must extract flags and submit them to gain points, earning at least 70% to pass.\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003ePlease reach out to training@defcon.org for any questions related to the proficiency exam and certificate option.\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eRegistration Terms and Conditions: \u003c\/strong\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eTrainings are refundable before July 11, 2026, minus a non-refundable processing fee of $250.\u003c\/span\u003e\u003cspan\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eBetween July 11, 2026 and August 5, 2026 partial refunds will be granted, equal to 50% of the course fee minus a processing fee of $250.\u003c\/span\u003e\u003cspan\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eAll trainings are non-refundable after August 5, 2026.\u003c\/span\u003e\u003cspan\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eTraining tickets may be transferred to another student. Please email us at training@defcon.org for specifics.\u003c\/span\u003e\u003cspan\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eIf a training does not reach the minimum registration requirement, it may be cancelled. In the event the training you choose is cancelled, you will be provided the option of receiving a full refund or transferring to another training (subject to availability).\u003c\/span\u003e\u003cspan\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eFailure to attend the training without prior written notification will be considered a no-show. No refund will be given.\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eDEF CON Training may share student contact information, including names and emails, with the course instructor(s) to facilitate sharing of pre-work and course instructions. Instructors are required to safeguard this information and provide appropriate protection so that it is kept private. Instructors may not use student information outside the delivery of this course without the permission of the student.\u003c\/span\u003e\u003cspan\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eBy purchasing this ticket you agree to abide by the \u003c\/span\u003e\u003ca href=\"https:\/\/defcon.org\/html\/links\/dc-code-of-conduct.html\"\u003e\u003cspan\u003eDEF CON Training Code of Conduct\u003c\/span\u003e\u003c\/a\u003e\u003cspan\u003e and the registration terms and conditions listed above.\u003c\/span\u003e\u003cspan\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eSeveral breaks will be included throughout the day. Please note that food is not included.\u003c\/span\u003e\u003cspan\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eAll courses come with a certificate of completion, contingent upon attendance at all course sessions. Some courses offer an option to upgrade to a certificate of proficiency, which requires an additional purchase and sufficient performance on an end-of-course evaluation.\u003c\/span\u003e\u003c\/p\u003e","brand":"Las Vegas 2026","offers":[{"title":"Course only - Aug 7 (includes DEF CON Human Badge)","offer_id":47697618010330,"sku":null,"price":1500.0,"currency_code":"USD","in_stock":true},{"title":"Course + Proficiency Exam - Aug 7 (includes DEF CON Human Badge)","offer_id":47702873735386,"sku":null,"price":1800.0,"currency_code":"USD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0629\/2088\/4442\/files\/digitalsupplychainsquare.png?v=1774380181"}],"url":"https:\/\/training.defcon.org\/collections\/def-con-34-friday-weekend-and-4-day-classes.oembed","provider":"defcontrainings","version":"1.0","type":"link"}