Logo

I speak at conferences and meetups about cybersecurity, adversary emulation, detection engineering, and building tools for them. I have some upcoming talks in the pipeline. Find them below along with my past presentations.

Type All
Tags All tags

7 of 7

Upcoming Talks

Hacking the Orchard: Offensive Security with AppleScript and JXA

Hacking the Orchard: Offensive Security with AppleScript and JXA

A walkthrough of macOS ATT&CK techniques using LOAS — ATT&CK-mapped atomic tests built for Apple platforms. Covers AppleScript, JXA, Remote Apple Events, TCC, and how to use these techniques for detection validation.

June 12, 2026 Walmart Cyber Sessions: Hacking in Herndon Herndon, VA

ATT&CKDetection EngineeringDetection ValidationAdversary EmulationmacOSAppleScriptLiving Off the Land Slides Blog

Past Talks

Catch Me If You Can: Detector-Resistant Evasion via Semantics-Preserving Command Re-Realization

Catch Me If You Can: Detector-Resistant Evasion via Semantics-Preserving Command Re-Realization

A research paper exploring techniques for evading detections through semantics-preserving command re-realization, without altering the underlying behavior of the commands.

May 21, 2026 IEEE Symposium on Security and Privacy (S&P) San Francisco, CA

Red TeamDetection EngineeringEvasionSecurity ResearchAdversary Emulation Publication
Trust No Trap: The Agent Always Knocks

Trust No Trap: The Agent Always Knocks

Using Agentic MCP Pipelines as Canaries for Your Deception Infrastructure

April 26, 2026 BSides Charm // Cyber Deception Village Towson, MD

Cyber DeceptionDetection ValidationMCP Slides
Supercharging Atomic Red Team with AI

Supercharging Atomic Red Team with AI

A quick intro to the Atomic Red Team MCP server: what it is, how it works, and why it might change how you approach adversary emulation.

April 21, 2026 SecOps Weekly Virtual

AIMCPAtomic Red TeamAdversary EmulationDetection Validation Slides Video Blog
Bridging the Gap: Enhancing Detection Coverage with Atomic Red Team, Sigma, and MITRE ATT&CK

Bridging the Gap: Enhancing Detection Coverage with Atomic Red Team, Sigma, and MITRE ATT&CK

A practical approach to continuous detection validation using Atomic Red Team, Sigma rules, and MITRE ATT&CK mapping via GitHub Actions and Docker. Learn how to automate detection coverage assessment and visualize security gaps using ATT&CK Navigator.

October 22, 2024 MITRE ATT&CKCON 5.0 McLean, VA

MITRE ATT&CKDetection EngineeringAtomic Red TeamAdversary EmulationSigma Slides
Simplify security testing with Docker, Windows Sandbox, and Atomic Red Team

Simplify security testing with Docker, Windows Sandbox, and Atomic Red Team

Learn how you can install and use Atomic Red Team in Windows Sandbox and Docker environments to simply and safely validate detective controls.

October 30, 2023 Atomic Friday Virtual

Atomic Red TeamDetection ValidationAdversary EmulationInfrastructure Video
Expanding your skillset with Atomic Red Team

Expanding your skillset with Atomic Red Team

Whether you want to advance your career or are new to information security, Atomic Red Team can help. Here are a slew of tips from the atomic community.

July 31, 2020 Atomic Friday Virtual

Atomic Red TeamInfosec CareersCareer DevelopmentCommunity Video