Clint Gibler’s Post

BSidesSF talk recordings are now live! >55 talks and panels on AI, AppSec, supply chain security, cloud, blue and red team, and more! 🔷 Keynotes Navigating the AI Frontier: Investing in AI in the Evolving Cyber Landscape - Chenxi Wang, Ph.D. Unlocking the Future: AI is the Key to CISOs Top Challenges - Caleb Sima 🤖 AI LLMs at the Core: From Attention to Action in Scaling Security Teams - Fotios (Fotis) Chantzis, Paul McMillan Skynet the CTI Intern: Building Effective Machine Augmented Intelligence - Scott R. Security Considerations for Services Using AI Models - Shrey Bagga TL;DR: Applying AI to Security - Me! One-Click Code Fix: Securing Code Using AI - Chandrani Mukherjee, Joseph S. Finetuning LLMs for Security Log Detections - Wilson Tang AiIAM: Transforming the Democratized AWS IAM Architecture with LLMs - Anthony Scheller, MICS, Jorge L Gomez Next-Gen Detection: Harnessing LLMs for Sigma Rule Automation - Dave Johnson AI: Best Janitor or Worst Superhero? - Adrian Sanabria 🔥 Other Awesome Talks Titans of Scale: Strategies to Scale Security in Expanding Organizations - Mukund Sarma, Jeevan S., Ariel S., Jacob Salassi, Julia K. WhizBangLambdaFix: where AWS Misconfigurations meet Auto-Fix-It Antics - Lily Chau, Lakshmanan Murthy Reinventing ETL for Detection and Response Teams - Josh Liburdi From Hacking to C-Suite: Navigating the Labyrinth of Security Careers - Caroline Wong, Nicole Grinstead, Anna Westelius, Swathi Joshi, Tanvi Vyas Founders R Us: Tales from recent security CEOs - Leif Dreizler, Brooke M., Umaimah K., Travis McPeak, Oliver Friedrichs Effective Detection in Kubernetes Clusters - Shay Berkovich, Oren Ofer Startup Security, 2nd Edition - Evan J Johnson and much more! #cybersecurity #security #ai

Given SameSite cookies and modern frameworks, is CSRF dead? NO! How it can be exploited + a Burp Extension to help Doyensec's Maxence Schmitt walks through how client-side path traversal (e.g. ../../../ in a URL parameter) can be exploited to perform CSRF, even with the SameSite cookie flag, by rerouting legitimate API requests. - This bug was found on major apps like Mattermost and Rocket.Chat. - See attached whitepaper for more info - And a new Burp Suite extension to help find this vulnerability #cybersecurity #security #infosec

Supply chain attacks on GitHub CI/CD pipelines aim to steal secrets. Here's an OSS tool to prevent that using egress filtering. 🐸 Bullfrog: A GitHub Action for securing GitHub workflows using egress policies. Bullfrog lets you control all outbound network connections made from within your GitHub Actions workflows by defining a list of IPs and/or domains that you want to allow. You can also set the policy to "audit" to get a list of all outbound network connections, without impacting your existing workflows.

🤖 Sinon: A tool by James Brine that automates the setup of Windows-based deception hosts, using GPT-4 to generate content (files, emails, etc.) And a config file that supports various actions to emulate user behavior: - Installing applications - Browsing websites - Ceating and modifying files - Downloading decoy files - Simulating user interaction - Creating lures and more! https://lnkd.in/ge8yrH9M #cybersecurity #security #ai #blueteam

☁ Domain Protect GCP A new tool designed to scan Google Cloud DNS across a GCP organization for domain records vulnerable to takeover. Including: - Subdomain NS delegations - CNAME records for missing Google Cloud Storage buckets - A records for Google Cloud Load Balancers with missing storage bucket backends It supports deployment via GitHub Actions or manual scans from a laptop, with alerts sent through Slack or email. By Paul Schwarzenberger #cybersecurity #security

📚 No tl;dr sec this week! Have a great day, and see you next week! 👋

👩💼 10 Common Interview Questions Aakash Gupta on how to stand out and get the offer. Some great tactical tips on how to answer each effectively. 1. What is your biggest failure? 2. Why do you want to work here? 3. Tell me about yourself. 4. What work accomplishment are you most proud of? 5. What is your greatest weakness? 6. How do you handle competing priorities? 7. What are your compensation expectations? 8. Tell me about a conflict at work. 9. What are your career goals? 10. What is your approach to giving and receiving feedback? Full thread here: https://lnkd.in/g3R5f2x5

☁ Periodic Table of Cloud Security - by Wiz A collection of >50 security measures for defending cloud environments, mapped to attacker technique & D3FEND Tactic. Covering defenses across: * Network * Identity * Secrets * Threats Link to the Periodic Table and Defenses database in the comments. #cybersecurity #security

🕵♀️ PII Detective New tool that uses LLMs to identify, classify, and protect PII in data platforms like BigQuery & Snowflake. It scans table and column names -> identifies PII -> helps you set up Dynamic Data Masking Policies to easily enforce ACLs while minimizing user friction. The Dynamic Data Masking Policies let data scientists interact with PII without viewing the raw data. By Kyle Polley https://lnkd.in/gJP-ykmh #cybersecurity #infosec #security #ai