Technical talks - Panel discussions on Purple teaming and Adversary simulation

The Adversray Sandbox will have technical talks and panel discussions participating industry leaders focused on Purple teaming, adversary simulation and the trends in adversarial tradecraft.

Panel Discussion: Increasing Security ROI with Adversary Simulation and Purple Teaming

Ransomware campaigns and state sponsored threat actors mutate quickly which is evolving defense mechanisms, thereby forcing organizations to invest more in cybersecurity. This session will discuss how organizations can use adversary simulation and purple teaming to build a more effective security program and increase security ROI.

Jonathan Baker

Moderator
Director, Center for Threat-Informed Defense, MITRE Engenuity

Director, Center for Threat-Informed Defense, MITRE Engenuity

Jorge Orchilles

Panelist
Instructor, Author, Purple Team Ambassador, SANS

Instructor, Author, Purple Team Ambassador, SANS

Daniel DeCloss

Panelist
CEO and Founder at PlexTrac

‌CEO and Founder at PlexTrac

Abhijith B R

Panelist
Founder and Lead at Adversary Village

Adversary Simulator and Purple Team Hands-on Booth

Adversary Village will be hosting a hands-on initiative named Adversary Simulator and Purple Team booth. Adversary Simulator booth will have hands-on adversary emulation plans specific to a wide variety of threat-actors - ransomware, these are meant to provide the participant/visitor with a better understanding of the Adversary tactics.

This is a volunteer assisted activity where anyone, both management and technical folks can come-in and experience different categories of simulation, emulation and purple scenarios. Adversary Simulator booth will be having a lab environment focused on recreating enterprise infrastructure, aimed at simulation and emulating various adversaries. The booth visitors will be able to view, simulate and control various TTPs used by adversaries. The simulator is meant to be a learning experience, irrespective of whether one is hands-on with highly sophisticated attack tactics or from the management.

Technical talk: Dressing Adversary Emulation in Business Attire: Outcomes and Successes

Jamie Williams

Speaker
Principal Adversary Emulation Engineer, The MITRE Corporation

Principal Adversary Emulation Engineer, The MITRE Corporation

We very often focus on the technical execution of adversary emulation, but must also not forget to highlight the broader “so what?” relative to the business. In this talk we will explore various examples of using adversary emulation to identify and deliver impactful business outcomes.
Jamie is an adversary emulation engineer for The MITRE Corporation where he works with amazing people on various exciting efforts involving security operations and research, mostly focused on adversary emulation and behavior-based detections. He leads the development of MITRE ATT&CK® for Enterprise and has also led teams that help shape and deliver the “adversary-touch” within MITRE Engenuity ATT&CK Evaluations as well as the Center for Threat-Informed Defense (CTID).

Choose your own Adversary Adventure - Game

Adversary Adventure is a Choose-Your-Own-Adventure model interactive game, where everyone can participate, choose the various activities of an adversary, post exploitation.
The Viking symbol Vegvisir was believed to be a guide helping the carrier to find their way back! The vikings believed that the symbol could help a person find the right path in case of bad weather or storms, regardless of the environment they encounter. Lets hope Vegvisir can guide you through the each challenges in the Adversray Adventure Game.