RiskSense, Inc., pioneering risk-based vulnerability prioritization and management, today announced that senior security analyst and Windows kernel expert Sean Dillon will present a deep dive session on the high-profile NSA ETERNAL exploits at DerbyCon 8.0 in Louisville, Kentucky.
|WHO:||Sean Dillon (aka @zerosum0x0), senior security analyst at RiskSense, has years of experience in penetration testing, exploit reverse engineering and malware research especially around the Microsoft Windows kernel. Sean is a co-author of the ETERNALBLUE and other MS17-010 Metasploit exploit modules. He was the first to publish a reverse engineering analysis of the DOUBLEPULSAR SMB backdoor. Sean has taught workshops on Windows internals at DEF CON and to government agencies.|
|WHAT:||At DEF CON 26, Sean presented preliminary findings from his reverse engineering of the Windows ETERNAL exploits and remote code execution vulnerabilities in the Microsoft Windows platform used to carry out the global WannaCry, NotPetya and Olympic Destroyer attacks. In this DerbyCon presentation, Sean will reveal his complete report from reverse engineering the mechanisms behind these exploits, including internal structures and background details on the exploit chains used by ETERNALBLUE, ETERNALCHAMPION, ETERNALROMANCE, and ETERNALSYNERGY. Sean will also recommend best practices for protecting Windows systems from future attacks that use these exploits.|
|WHEN:||Friday, October 5, 2018, 2:00-2:50 PM EDT in Track 2|
|WHERE:||DerbyCon 8.0, Marriott Louisville, 280 West Jefferson, Louisville, Kentucky 40202|
To schedule a conversation with Sean Dillon, contact Marc Gendron at [email protected] or +1 781.237.0341. For more information, visit: https://www.derbycon.com/friday-schedule/#event-35.
About RiskSense RiskSense, Inc. is the pioneer in risk-based vulnerability prioritization and management. Through AI-assisted pen test services and a cloud-based platform, the company delivers a fully informed picture of organizational cybersecurity risk with our credit-like RiskSense Security Score (RS3), dramatically improving how security and IT teams collaborate and take effective action.
The RiskSense cloud platform correlates customer infrastructure with comprehensive internal and external vulnerability data, threat intelligence, human pen test findings, and business asset criticality to measure risk, provide early warning of weaponization, predict attacks, and prioritize remediation activities to achieve cybersecurity risk goals.
By leveraging RiskSense threat and vulnerability management solutions, organizations significantly shorten time-to-remediation, increase operational efficiency, strengthen their security programs, heighten response readiness, reduce costs, and ultimately reduce attack surface and minimize cyber risks. For more information, please visit www.risksense.com or follow us on Twitter at @RiskSense.