Linus will walk us through how one get access to the most sensitive internal assets of a typical enterprise – remotely, whether you are a paid and approved security consultant or you are a cybercriminal. The talk will cover how to get a foothold on a corporate network from the internet, how to move laterally on internal networks to gain increasingly more privileges and finally some recommendations on how to become better at resisting advanced attackers.
About the speaker
Linus Kvarnhammar is an independent security consultant that previously worked for F-Secure and TrueSec. The last 6 years he has been conducting penetration tests of applications and networks for enterprise customers – mostly within the sectors banking/finance, government and gambling. When not working for clients he writes security tools in PowerShell and Python and participates in bug bounty programs online.