Attack Detect Defend (rot169)

Strategic considerations for post-quantum crypto migration

How to implement quantum-resistant services

Demystifying the quantum crypto threat

How to identify threats if you have no logs (introducing OSQuery & Fleet)

Automatically block brute-force attackers with Fail2Ban

Level-up your host-based monitoring with Sysmon

Can snapshots really save your data from ransomware?

Collecting & analysing Windows event logs with Winlogbeat & ELK

Bootstrap your Network Security Monitoring with Security Onion

The Hidden Office Test Key (Persistence)

Gaining Root Access on Linux by Abusing SUID Binaries (Privilege Escalation)

DLL Injection (and more!) via Application Shimming (Persistence & Defence Evasion)

Desktop and RDP Session Hijacking (Lateral Movement)

Hidden Outlook Rules (Persistence & Exfiltration)

KringleCon 2020 - 11/11 - Snowball Fight Challenge & Naughty/Nice List Blockchain

KringleCon 2020 - 10/11 - Elf Code Challenge & Defeat Fingerprint Sensor

KringleCon 2020 - 9/11 - Scapy Prepper Terminal & ARP Shenanigans Challenge

KringleCon 2020 - 8/11 - Redis Bug Hunt Terminal & Broken Tag Generator

KringleCon 2020 - 7/11 - CAN BUS Terminal & Sleigh CAN-D-BUS Challenge

KringleCon 2020 - 6/11 - Sort-o-Matic Regex Challenge & Splunk Challenge

KringleCon 2020 - 5/11 - Speaker Unprep Terminal, Dial-up Modem & Open HID Lock

KringleCon 2020 - 4/11 - Unescape Tmux Terminal & Santavator Challenge

KringleCon 2020 - 3/11 - Linux Primer Terminal & POS Password Recovery

KringleCon 2020 - 2/11 - Kringle Kiosk Terminal & S3 Bucket Challenge

KringleCon 2020 - 1/11 - Introduction & Gift List Untwirl

Bypass Filesystem Defences with Direct Volume Access (Defence Evasion)

Getting Started at KringleCon / Holiday Hack

Abusing BITS Jobs (Persistence & Defence Evasion)

Bypassing Firewalls with DNS Tunnelling (Defence Evasion, Exfiltration and Command & Control)

Execution Guardrails & Environmental Keying (Defence Evasion)