WWHF @ Mile High 2025

The focus in this workshop is on scripting in support of a webapp pentest. A good webapp pentest starts with a manual exploration of the target to get your bearings, of course. But once you have that, it's time to make the computer do some of the work for you.
 
We'll look at four areas:
 
1. Using the console in your browser's Developer Tools to leverage same-origin access to the application's resources to find out what's there. It's not all JavaScript: you can start in the console and end up in whatever language you want to do the heavy lifting.
 
2. Using jwt_tool to automate the common attacks against JSON Web Tokens.
 
3. Diving into cURL to find how it can save you time and help produce clear and reliable direct evidence of how an application behaves.
 
4. Getting familiar with jq, a command line utility for working with JSON data. Just as JavaScript has been taking over every aspect of web applications, JSON is displacing structured text in config files and just about everywhere else.

"I'm a Techie, and I might be promoted soon. I need a GRC Cram Session" is a fast-paced, intensive 2-hour workshop designed for tech professionals on the cusp of career advancement. This crash course will equip you with essential knowledge of Governance, Risk Management, and Compliance (GRC) in cybersecurity, providing a comprehensive overview of how these elements integrate to form a robust security program. You'll gain insights into defining governance strategies, managing risks effectively, and ensuring regulatory compliance - skills that are crucial for leadership roles in today's cyber-centric business environment. By the end of this cram session, you'll be armed with the foundational GRC concepts necessary to confidently step into your potential new role and contribute to your organization's cybersecurity strategy.

In this session, we’ll review common characteristics of current malware, discuss tactical endpoint investigation strategies for Windows and Linux endpoints, review some free and open-source tools and scripts to facilitate rapid endpoint investigations, and talk about deriving “actionable intelligence,” leading to effective incident-response containment and eradication procedures.

Peel back the mystique behind the most basic and effective ways that threat actors, criminals, and pentesters breach physical locations. All of these techniques can be done in less than five minutes.  Learn how to properly manage expectations and scoping for your next Physical Security adventures.

In this session, we’ll review common characteristics of current malware, discuss tactical endpoint investigation strategies for Windows and Linux endpoints, review some free and open-source tools and scripts to facilitate rapid endpoint investigations, and talk about deriving “actionable intelligence,” leading to effective incident-response containment and eradication procedures.