Wout is a senior Red Team Operator at NVISO and specializes in the simulation of Advance Persistent Threat (APT) groups that might target your organization. He is the main driver behind the phishing methodology of NVISO’s Red Team engagements and ironically loves explaining how to make his job harder.
Outside of getting hyped over nerdy stuff, he is an avid traveller with a love for extreme sports like parkour and freediving.
If the perfect Blue Team exists, does that mean the Red Team doesn’t stand a chance against it or is there still a way to sneak their phish in the mailbox of their target? Well in this talk we investigate how a Red Team could sneak past even the best Blue Team imaginable.
We analyse how a perfect Blue Team would detect malicious domains targeting their organization, how they would correlate these to other threat infrastructure to burn the whole campaign and how they would block a successful initial foothold in case they did not detect the phish campaign before its launch.
By assuming the perfect adversary, we discuss techniques and important OPSEC measures Red Teams need to use to get a successful and undetected initial foothold in their targeted organization.
Through practical demos and real-life examples, attendees will learn invaluable techniques and OPSEC measures to improve their Blue or Red Team tradecraft.