BEGIN:VCALENDAR
VERSION:2.0
PRODID:Data::ICal 0.24
BEGIN:VEVENT
DESCRIPTION:   'Title: Google Workspace Red Team Automation with SWAT\n   W
 hen: Saturday\, Aug 12\, 11:50 - 12:20 PDT\n   Where: Flamingo - Mesquite 
 - Cloud Village - [1]Map\n   Speakers:Justin Ibarra\,Terrance DeJesus\n\n 
   SpeakerBio:Justin Ibarra \, Leader of the Threat Research and Detection\
 n   Engineering Team at Elastic\n   Justin Ibarra is the leader of the Thr
 eat Research and Detection\n   Engineering team at Elastic\, where he was 
 previously a principal\n   security research engineer. He focuses on many 
 aspects of offensive\n   and defensive security research\, including endpo
 int\, cloud\, and web\n   based technologies. He spends a lot of time in t
 elemetry and building\n   detection capabilities\, while also continually 
 looking for ways to\n   advance and evolve detection engineering approache
 s and principles.\n   Twitter: [2]@br0k3ns0und\n\n   SpeakerBio:Terrance D
 eJesus\n   Terrance DeJesus is a Security Detection Engineer for Elastic\,
  where I\n   balance engineering development with threat research into clo
 ud-based\n   threats. Previously held various positions at NTT Ltd. such a
 s cyber\n   threat hunter\, threat intelligence analyst\, and SOC analyst.
  Overall\,\n   I don't take myself seriously by am committed to whatever h
 as my\n   attention. Became a father at 19 years old and now have a beauti
 ful\n   family of 5. Selfishly\, I love hip-hop culture and any role-playi
 ng\n   game (RPG) I can get my hands on\, but will choose WoW over Runesca
 pe\n   any day. Focused on pursuing threat research in cloud-security\, wi
 th a\n   focus on GCP and AWS\, but Google Workspace has been my interest\
 n   lately. Looking forward to meeting others like-minded and potentially\
 n   collaborating.\n   Twitter: [3]@_xDeJesus\n\n   Description:\n   The S
 imple Workspace ATT&CK Tool (SWAT) is a cutting-edge\n   cybersecurity app
 lication that serves as an invaluable asset for\n   threat detection rule 
 authors\, red team members\, and security\n   researchers. Designed with m
 odularity and simplicity at its core\, SWAT\n   is an interactive Python s
 hell tool\, instrumental in emulating\n   red-teaming behavior specificall
 y against Google Workspace\, and acting\n   as a post-compromise tool.\n\n
    At its heart\, SWAT is grounded in the MITRE ATT&CK framework\, a\n   g
 lobally-accessible knowledge base of adversary tactics and\n   techniques.
  By hosting the ATT&CK enterprise data locally\, SWAT\n   significantly re
 duces lookup times\, enhancing the overall user\n   experience while ensur
 ing access to the most relevant and current\n   information.\n\n   A stand
 out feature of SWAT is its inherent modularity\, enabling\n   security pra
 ctitioners to add their custom modules for adversary\n   emulation seamles
 sly. This flexibility allows the tool to adapt to\n   evolving cybersecuri
 ty landscapes\, and meet the unique needs of\n   individual use-cases\, th
 ereby fostering a collaborative approach to\n   threat detection and respo
 nse.\n\n   SWAT further enhances its value proposition by integrating a pa
 yload\n   known as 'Tango'. Written in Go\, Tango functions as a Command a
 nd\n   Control (C2) agent\, thus adding another layer of realism to\n   re
 d-teaming exercises. This integration encourages a deeper\n   understandin
 g of adversarial behavior and aids in the development of\n   effective def
 ense mechanisms.\n\n   In addition to its emulation capabilities\, SWAT of
 fers functionality\n   to analyze data from Google Workspace. This feature
  empowers users to\n   inspect and evaluate their current security posture
 \, identify\n   potential vulnerabilities\, and proactively take steps to 
 strengthen\n   their defenses.\n\n   Finally\, the tool's use extends beyo
 nd being a mere testing platform.\n   SWAT can be a vital component in sec
 urity workflows to model potential\n   threats\, formulate countermeasures
 \, and train personnel on various\n   facets of cybersecurity. With the co
 ntinually evolving threat\n   landscape\, SWAT is well-positioned to assis
 t cybersecurity\n   professionals in staying ahead of their adversaries. T
 he simplicity\n   and modularity of SWAT make it a powerful tool in the ar
 senal of those\n   committed to enhancing cybersecurity.\n\n   '\n\n   1. 
 #FlamingoThirdFloor\n   2. https://twitter.com/br0k3ns0und\n   3. https://
 twitter.com/_xDeJesus\n\n\n
DTEND:20230812T192000Z
DTSTART:20230812T185000Z
LOCATION:CLV - Flamingo - Mesquite - Cloud Village
SUMMARY:Google Workspace Red Team Automation with SWAT
END:VEVENT
END:VCALENDAR