Couch to Compromise 2024

Delve into 2023’s most common attack chains used against large enterprises! Gain insights into attacks, defense strategies, and actionable tasks for an instant security lift, learning how to lower your risk of compromise via these attacks without budget strain

This presentation is set to unveil the TTPs employed by attackers who targeted low-hanging vulnerabilities to compromise large enterprises in 2023. It will provide a candid, in-depth exploration through a step-by-step attack chain walkthrough, shedding light on the intricacies of these attacks. Discover the hows and whys behind these tactics and gain insights into proactive defense measures.

Attendees will leave armed with actionable tasks that can be implemented immediately on Monday, elevating their security posture without straining budgets. By addressing these vulnerabilities, they not only fortify their defenses but also make future penetration tests more cost-effective, eliminating potential “cheap shots” favored by pentesters.

The presentation also promises to empower red team participants with the knowledge to potentially achieve domain admin status within an average corporation from the comfort of their couch, all within record time.

This talk is updated annually, so if you’ve seen an old version of it, that old version is old.