tl;dr sec
Keep up with Cybersecurity in 7 min/week. Join >50,000 security professionals getting the best tools, talks, and resources right in their inbox for free.
Connect
A Practitioner’s Guide to Consuming AI
An overview of current applications of AI/ML to cybersecurity with relevant links and a vision of where things are headed.
2 Days | 4 Rooms | ~32 Hours of Talks
A threat-informed roadmap for securing Kubernetes clusters
A collection of interesting AI tools, products, resources, papers, and more I’ve come across.
A breakdown of what constitutes the software supply chain and how to secure each stage
Detailed CNAPP overview and Day 2 guide, o1 semi-escapes to solve a broken challenge, config tips & tricks for cloud control plane logs
Cloud-specific indicators of compromise, tools regularly used by Russian government threat actors, webinar on secure guardrails & building Netflix's Paved Road
Excellent scaling CloudSec resources, SANS + AWS white paper, two OSS benchmarks for measuring the offensive capabilities of AI models
LinkedIn's dynamic infra mapping system that streamlines vuln management, register any removed package name because #yolo, creating least privilege roles at scale
Common attack paths in identifying GHA vulns, how quickly AWS tokens are found by location, resources for red teamers and defenders
Skim >60 talks in ~15min, oodles of IAM tool-dles, all the tools ransomware gangs use
Get up to speed on >60 AI talks in 15 minutes
A list of all of the talks, abstracts, recordings, slides, papers, and tools for the Main Track and >10 villages
A list of all of the talks, abstracts, recordings, slides, papers, and tools from BSidesLV and BlackHat USA
Slides for some solid Vegas talks, threat modeling enterprise AI, open source templates to bootstrap your security programs
Across web security, cloud, supply chain, and AI
How to build a cost-effective, scalable detection engine, have LLMs write detections for you, understanding AWS session token internals