BEGIN:VCALENDAR
VERSION:2.0
PRODID:Data::ICal 0.24
BEGIN:VEVENT
DESCRIPTION:   'Title: Low Code High Risk: Enterprise Domination via Low Co
 de Abuse\n   When: Saturday\, Aug 13\, 16:00 - 16:45 PDT\n   Where: Caesar
 s Forum - Academy 401-410\, 421 (Track 3) - [1]Map\n\n   SpeakerBio:Michae
 l Bargury \, Co-Founder and CTO\, Zenity.io\n   Michael Bargury is the Co-
 Founder and CTO of Zenity\, where he helps\n   companies secure their low-
 code/no-code apps. In the past\, he headed\n   security product efforts at
  Azure focused on IoT\, APIs and IaC.\n   Michael is passionate about all 
 things related to cloud\, SaaS and\n   low-code security\, and spends his 
 time finding ways they could go\n   wrong. He also leads the OWASP low-cod
 e security project and writes\n   about it on DarkReading.\n   Twitter: [2
 ]@mbrg0\n\n   Description:\n   Why focus on heavily guarded crown jewels w
 hen you can dominate an\n   organization through its shadow IT?\n\n   Low-
 Code applications have become a reality in the enterprise\, with\n   surve
 ys showing that most enterprise apps are now built outside of IT\,\n   wit
 h lacking security practices. Unsurprisingly\, attackers have\n   figured 
 out ways to leverage these platforms for their gain.\n\n   In this talk\, 
 we demonstrate a host of attack techniques found in the\n   wild\, where e
 nterprise No-Code platforms are leveraged and abused for\n   every step in
  the cyber killchain. You will learn how attackers\n   perform an account 
 takeover by making the user simply click a link\,\n   move laterally and e
 scalate privileges with zero network traffic\,\n   leave behind an untrace
 able backdoor\, and automate data exfiltration\,\n   to name a few capabil
 ities. All capabilities will be demonstrated with\n   POCs\, and their sou
 rce code will be shared.\n\n   Finally\, we will introduce an open-source 
 recon tool that identifies\n   opportunities for lateral movement and priv
 ilege escalation through\n   low-code platforms.\n\n   '\n\n   1. https://
 defcon.outel.org/consolidated_page.html#CaesarsAcademyBR\n   2. https://tw
 itter.com/mbrg0\n\n\n
DTEND:20220813T234500Z
DTSTART:20220813T230000Z
LOCATION:DC - Caesars Forum - Academy 401-410\, 421 (Track 3)
SUMMARY:Low Code High Risk: Enterprise Domination via Low Code Abuse
END:VEVENT
END:VCALENDAR