SCHEDULE

Workshop Registrations Open Friday, 7/12, at 12pm EST

https://www.eventbrite.com/o/blue-team-village-at-dc-23237171494

The Blue Team Village will be in Savoy Ballroom inside the Flamingo Hotel & Casino.

This year we will also be holding workshops on Friday in four rooms provided to us by DEF CON, thank you DEF CON!

The four rooms are also in Flamingo: Valley of Fire 1, Valley of Fire 2, Lake Mead 1, Lake Mead 2

Friday: Village Workshops And Talks

Savoy Ballroom, Flamingo (Blue Team Village)

08:45: Village Opens

09:00: Threat Hunting With The Elastic Stack (4H Workshop)

14:00: A Theme Of Fear: Hacking The Paradigm (1H Talk)

15:00: Detection At Google: On Corp And Cloud (1H Talk)

16:30: Blue Team Guide For Fresh Eyes (30Min Talk)

17:00: The Cyber Threat Intelligence Mindset (30Min Talk)

17:30: Serverless Log Analysis On AWS (30Min Talk)

18:00: Village Closes


Friday: DEF CON Workshops Space

Valley Of Fire 1, Flamingo (DEF CON Workshop Space)

09:00: Threat Hunting With ATT&CK On Splunk (2H Workshop)

11:30: The "Art" of BEC (2H Workshop)

14:00: Malware Traffic Analysis Workshop (4H Workshop)

Valley Of Fire 2, Flamingo (DEF CON Workshop Space)

09:00: Deep Infrastructure Visibility With Osquery And Fleet (4H Workshop)

13:30: MEDIC! Malware Response 101 From The Trenches (2H Workshop)

16:00: Blue Teaming For Fun And The Sake Of Your Organization (2H Workshop)

Lake Mead 1, Flamingo (DEF CON Workshop Space)

09:00: Cyber Fire Puzzles Part 1 (4H Workshop)

14:00: Cyber Fire Puzzles Part 2 (4H Workshop)

Lake Mead 2, Flamingo (DEF CON Workshop Space)

09:00: Tracer FIRE Part 1 (4H Workshop)

14:00: Tracer FIRE Part 2 (4H Workshop)


Saturday: Village Workshops And Talks

Savoy Ballroom, Flamingo (Blue Team Village)

08:45: Village Opens

09:00: Introduction To Mac-centric Incident Response Tools And Techniques (4H Workshop)

13:00: Security Strategy for Small-Medium Business (1H Panel)

14:00: Anatomy Of A Megabreach: Equifax Report (1H Talk)

15:00: Memhunter - Automated Hunting Of Memory Resident Malware At Scale (30Min Talk)

16:30: When A Plan Comes Together: Building A SOC A-Team (30Min Talk)

17:00: Extending Zeek For ICS Defense (30Min Talk)

17:30: Killsuit - How The Equation Group Remained Out Of Sight For Years (30Min Talk)

18:00: Village Closes


Sunday: Village Talks And Closing Ceremony

Savoy Ballroom, Flamingo (Blue Team Village)

08:45: Village Opens

09:00: Evaded MicrosoftATA? **But** You Are Completely Exposed By Event Log (1H Talk)

10:00: Who Dis? Who Dis? The Right Way To Authenticate (1H Talk)

11:00: Atomic Threat Coverage: ATT&CK In Action! (1H Talk)

12:00: An Introduction To Malware Analysis (1H Talk)

13:00: Blue Team Village Closing Ceremony

14:00: Village Closes (See You Next Year!)