BEGIN:VCALENDAR
VERSION:2.0
PRODID:Data::ICal 0.24
BEGIN:VEVENT
DESCRIPTION:   'Title: Weaponizing Plain Text: ANSI Escape Sequences as a F
 orensic\n   Nightmare\n   When: Saturday\, Aug 12\, 11:00 - 11:45 PDT\n   
 Where: Caesars Forum - Forum - 109-119\, 138-139 - Track 2 - [1]Map\n\n   
 SpeakerBio:STĂ–K \, Hacker / Creative at Truesec\n   Hacker/Creative STÖK 
 is passionate about learning new things and\n   sharing his curiosity with
  the world. For the last 3 decades\, he has\n   professionally hacked anyt
 hing from computers/tech to marketing\,\n   fashion\, communication\, and 
 the human mind. By delivering fast-paced\,\n   engaging onstage presentati
 ons and creating educational cybersecurity\n   video content for the hacke
 r community. His curiosity and "Good Vibes\n   Only" mentality have reache
 d and inspired millions of people around\n   the world.\n\n   HACKERS GONN
 A HACK.\n   CREATORS GONNA CREATE.\n   GOOD VIBES ONLY.\n\n   Twitter: [2]
 @stokfredrik\n\n   Description:\n   Logs are a vital component for maintai
 ning application reliability\,\n   performance\, and security. They serve 
 as a source of information for\n   developers\, security teams\, and other
  stakeholders to understand what\n   has happened or gone wrong within an 
 application. However\, logs can\n   also be used to compromise the securit
 y of an application by injecting\n   malicious content.\n\n   In this pres
 entation\, we will explore how ANSI escape sequences can be\n   used to in
 ject\, vandalize\, and even weaponize log files of modern\n   applications
 . We will revisit old terminal injection research and log\n   tampering te
 chniques from the 80-90s. Combine them with new features\,\n   to create c
 haos and mischief in the modern cloud cliâ€™s\, mobile\, and\n   feature-r
 ich DevOps terminal emulators of today.\n\n   We will then provide solutio
 ns on how to avoid passing on malicious\n   escape sequences into our log 
 files. By doing so\, we can ensure that\n   we can trust the data inside o
 ur logs\, making it safe for operators to\n   use shells to audit files. E
 nabling responders to quickly and\n   accurately investigate incidents wit
 hout wasting time cleaning\, or\n   having to gather additional data\, whi
 le reconstructing events.\n\n   Welcome to this "not so black and white\,"
  but rather quite colorful\n   ANSI adventure\, and learn how to cause\, o
 r prevent a forensic\n   nightmare.\n\n   REFERENCES\n         There are m
 ultiple references to prior research featured and\n         provided as a 
 part of the storyline in the presentation.\n\n   '\n\n   1. #CaesarsForumB
 R\n   2. https://twitter.com/stokfredrik\n\n\n
DTEND:20230812T184500Z
DTSTART:20230812T180000Z
LOCATION:DC - Caesars Forum - Forum - 109-119\, 138-139 - Track 2
SUMMARY:Weaponizing Plain Text: ANSI Escape Sequences as a Forensic Nightma
 re
END:VEVENT
END:VCALENDAR