Under the Hoodie: Lessons from a Season of Penetration Testing

Logo
Presented by

Tod Beardsley, Research Director, Rapid7 & Kwan Lin, Senior Data Scientist, Rapid7

About this talk

In 2017, Rapid7 launched the “Under the Hoodie” project to shed light on the “dark art” of pen testing by revealing the process, techniques, and tools that go into it, as well as the insights that can be extracted. The 2019 Under the Hoodie report continues to provide visibility into this often occult niche of information security. Based on the results of about 180 engagements conducted in the most recent season of penetration testing, as well as real-world anecdotes from our engineers and investigators, our research explores recent trends and patterns derived from penetration testing. Join Rapid7 experts for an engaging discussion where you will learn: 1. The report’s most significant findings, including the most commonly exploited vulnerability classes and network misconfigurations 2. The most effective methods our team has found to compromise high-value credentials 3. How you can use the data in the report to effectively detect and prevent breaches on your own network
Related topics:

More from this channel

Upcoming talks (4)
On-demand talks (666)
Subscribers (58906)
Rapid7 is creating a more secure digital future for all by helping organizations strengthen their security programs in the face of accelerating digital transformation. Our portfolio of best-in-class solutions empowers security professionals to manage risk and eliminate threats across the entire threat landscape from apps to the cloud to traditional infrastructure to the dark web. We foster open source communities and cutting-edge research–using these insights to optimize our products and arm the global security community with the latest in attackers methods. Trusted by more than 10,000 customers worldwide, our industry-leading solutions and services help businesses stay ahead of attackers, ahead of the competition, and future-ready for what’s next.