webcast
November, 2023
PenTest Hackfest - BLASPASS CVE-2023-41041
In this session, Christopher Crowley discusses the recent BLASTPASS exploit chain for (CVE-2023-41064 and CVE-2023-41061) attributed to NSO by CitizenLab (CA), targeting the PassKit iOS component intended for the distribution of passes (coupons and tickets). This complex and effective exploit was discovered in the wild and required no user interaction to gain complete control of Apple iOS mobile devices running the 16.6 (latest at the time) iOS version. Because of the nature of the pass distribution for PassKit, it enables external entities to send unsolicited content to people. But, the exploit developers identified a flaw in ImageIO and Wallet which enabled remote code exploitation. The talk addresses some of the context of the ongoing campaigns attributed to NSO by CitizenLab (CA), and delves into the known details of the exploit chain. It also identifies some of the mitigation available via lockdown mode which would have prevented the exploit from working, at the expense of limited user functionality.
- SOC & SOAR Track - Fall Cyber Solutions Fest 2024
SOC & SOAR Track - Fall Cyber Solutions Fest 2024
Christopher Crowley (and many others)2024-11-07https://www.sans.org/webcasts/Fall-...
- 2024 SOC Survey
2024 SOC Survey
Christopher Crowley2024-07-12https://www.sans.org/webcasts/sans-... - Madrid SANS - 2023 SOC Survey
Madrid SANS - 2023 SOC Survey
Christopher Crowley2024-06-11https://drive.google.com/drive/fold...
- Kuwait Fundamentals and Best Practices for the SOC
Kuwait Fundamentals and Best Practices for the SOC
Christopher Crowley2024-05-05https://us02web.zoom.us/rec/share/T... - 2023 SANS SOC Survey Review: Highlights and Deep Dive
2023 SANS SOC Survey Review: Highlights and Deep Dive
Christopher Crowley2024-03-11https://www.youtube.com/watch?v=K_h... - Arab Intl Cybersecurity Conference - Bahrain
Arab Intl Cybersecurity Conference - Bahrain
Christopher Crowley and others2023-12-05https://www.arabcybersecurity.com/a... - BLASTPASS SANS HackFest Hollywood 2023
BLASTPASS SANS HackFest Hollywood 2023
Christopher Crowley2023-11-16https://www.youtube.com/watch?v=rdA... - Cyber Solutions Fest 2023: SOC & SOAR
Cyber Solutions Fest 2023: SOC & SOAR
Christopher Crowley and many others2023-10-25https://www.sans.org/webcasts/cyber... - SOC Survey - The Hack Summit
SOC Survey - The Hack Summit
Christopher Crowley2023-10-19https://thehacksummit.com/ - SOC Panel: Finding, Keeping, and Caring for the Best People
SOC Panel: Finding, Keeping, and Caring for the Best People
Christopher Crowley; Russ McRee; Alissa Torres; Carson Zimmerman2023-08-11https://cfc.blueteamvillage.org/dc... - DarkReading Mandiant Threat Intel 3rd Party Risk
DarkReading Mandiant Threat Intel 3rd Party Risk
Christopher Crowley2023-06-29https://darkreading.tradepub.com/fr... - TrendMicro
TrendMicro
Christopher Crowley2023-05-06https://resources.trendmicro.com/R2... - 2023 SOC/SOAR Solutions Forum
2023 SOC/SOAR Solutions Forum
Christopher Crowley and many others2023-03-17https://www.sans.org/webcasts/2023-... - Informa Wiz DevSecOps
Informa Wiz DevSecOps
Christopher Crowley2023-03-06https://darkreading.tradepub.com/fr... - CDFS SOC Capabilities Architecture People
CDFS SOC Capabilities Architecture People
Christopher Crowley2023-02-14https://eventbrite.com.au/e/soc-web... - SOC Survey Data 2
SOC Survey Data 2
Christopher Crowley2022-12recording unavailable - PSW #760
PSW #760
Christopher Crowley2022-10-19https://www.youtube.com/watch?v=XQl... - DarkReading DeepInstinct AI
DarkReading DeepInstinct AI
Christopher Crowley2022-09recording unavailable - SOC Survey Intro 1
SOC Survey Intro 1
Christopher Crowley2022-05https://www.sans.org/webcasts/sans-... - DarkReading Qualys
DarkReading Qualys
Christopher Crowley2022-03recording unavailable - DarkReading ZScaler
DarkReading ZScaler
Christopher Crowley2022-01-06recording unavailable - DarkReading Darktrace AI
DarkReading Darktrace AI
Christopher Crowley2021-12-11recording unavailable - Cybrary SOC Series-2 Tech 003
Cybrary SOC Series-2 Tech 003
Christopher Crowley2021-12-07https://www.cybrary.it/business/res... - Picus SANS Keynote 2021 11 25 001
Picus SANS Keynote 2021 11 25 001
Christopher Crowley2021-11-25https://events.picussecurity.com/ho... - FORCEDENTRY - Paris
FORCEDENTRY - Paris
Christopher Crowley2021-11-07https://www.youtube.com/watch?v=LcD... - ODSC Pandas
ODSC Pandas
Christopher Crowley2021-11-02https://www.crunchbase.com/event/od... - Cyber Solutions Fest 2021: Level SOC & SOAR Efficiency
Cyber Solutions Fest 2021: Level SOC & SOAR Efficiency
Christopher Crowley2021-10-21https://www.sans.org/webcasts/cyber... - Cybrary SOC Series-2 Tech 002
Cybrary SOC Series-2 Tech 002
Christopher Crowley2021-10-19https://www.cybrary.it/business/res... - DarkReading Montance TITH
DarkReading Montance TITH
Christopher Crowley2021-10-15recording unavailable - FORCEDENTRY
FORCEDENTRY
Christopher Crowley2021-09-23https://www.youtube.com/watch?v=LcD... - DarkReading Qualys Montance AlertFatigue
DarkReading Qualys Montance AlertFatigue
Christopher Crowley2021-09-14recording unavailable - Cybrary SOC Series-2 Tech 001
Cybrary SOC Series-2 Tech 001
Christopher Crowley2021-09-14https://www.cybrary.it/business/res... - Mobile Attack Surface AATCC
Mobile Attack Surface AATCC
Christopher Crowley2021-08-16https://members.aatcc.org/store/web... - SOAR DomainTools
SOAR DomainTools
Christopher Crowley2021-08-16recording unavailable - Cybrary SOC Series 004
Cybrary SOC Series 004
Christopher Crowley2021-07-11https://www.cybrary.it/business/res... - Cybrary SOC Series 003
Cybrary SOC Series 003
Christopher Crowley2021-06-09https://www.cybrary.it/business/res... - SOC Stock Metrics 2021 06 06
SOC Stock Metrics 2021 06 06
Christopher Crowley2021-06-06recording unavailable - DarkReading PaloAltoNetworks SOAR SOC Class
DarkReading PaloAltoNetworks SOAR SOC Class
Christopher Crowley2021-06recording unavailable - RSA Technology Taxonomy
RSA Technology Taxonomy
Christopher Crowley2021-05https://www.youtube.com/watch?v=nXg... - SOC Architecture Maturity Failures OhMyHack
SOC Architecture Maturity Failures OhMyHack
Christopher Crowley2021-05recording unavailable - Chris Crowley - 2020 Security Operations Center Survey Results
Chris Crowley - 2020 Security Operations Center Survey Results
Ron Gula & Christopher Crowley2021-01-14https://www.gula.tech/blog/gtfc3 - STH Metrics SOC User Awareness
STH Metrics SOC User Awareness
Christopher Crowley2020-12-03https://www.youtube.com/watch?v=ERl... - Use Case Development: Excerpt
Use Case Development: Excerpt
Christopher Crowley2020-11-01https://www.youtube.com/watch?v=Dd_... - CloudSecurity Alliance Metrics Excerpt
CloudSecurity Alliance Metrics Excerpt
Christopher Crowley2020-10recording unavailable - SOC Architecture Maturity Failures
SOC Architecture Maturity Failures
Christopher Crowley2020-09-29recording unavailable - Giving Effective Presentations: A Crash Course with Chris Crowley
Giving Effective Presentations: A Crash Course with Chris Crowley
Christopher Crowley2020-09-29https://www.youtube.com/watch?v=k6p... - Mobile Attack Surface
Mobile Attack Surface
Christopher Crowley2020-09https://www.sans.org/webcasts/mobil... - WWHF Hunting by Numbers FINAL PDF
WWHF Hunting by Numbers FINAL PDF
Christopher Crowley2020-09https://www.youtube.com/watch?v=EXy... - Vampirism and the Donut Economy
Vampirism and the Donut Economy
Christopher Crowley2020-06https://www.youtube.com/watch?v=8ah... - Educause V0toVHard FULL
Educause V0toVHard FULL
Christopher Crowley2020-04https://www.youtube.com/watch?v=caP... - Educause V0toVHard Short
Educause V0toVHard Short
Christopher Crowley2020-04https://events.educause.edu/special... - SOAR Austin
SOAR Austin
Christopher Crowley2020-01recording unavailable - 2019 SOC Survey: Common and Best Practices for Security Operations Centers
2019 SOC Survey: Common and Best Practices for Security Operations Centers
Christopher Crowley2019-07-09https://www.sans.org/webcasts/commo... - Denver Equifax SO
Denver Equifax SO
Christopher Crowley2019-07recording unavailable - SOC Metrics for FIRST
SOC Metrics for FIRST
Carson Zimmerman and Christopher Crowley2019-06https://media.first.org/webinars/Me... - SOC Survey Preview
SOC Survey Preview
Christopher Crowley2019-06recording unavailable - Technology Taxonomy Crowley Pescatore
Technology Taxonomy Crowley Pescatore
Christopher Crowley2019-06recording unavailable - HK Equifax SO
HK Equifax SO
Christopher Crowley2019-03recording unavailable - Manila HK Equifax SO
Manila HK Equifax SO
Christopher Crowley2019-03recording unavailable - SOAR
SOAR
Christopher Crowley2019-02recording unavailable - SOC Brief
SOC Brief
Christopher Crowley2018-11recording unavailable - CIRT, CERT, CSIRT, SOC Osaka,
CIRT, CERT, CSIRT, SOC Osaka,
Christopher Crowley2018-10recording unavailable - CIRT, CERT, CSIRT, SOC Singapore
CIRT, CERT, CSIRT, SOC Singapore
Christopher Crowley2018-10recording unavailable - The Definition of SOC-cess? SANS 2018 Security Operations Center Survey
The Definition of SOC-cess? SANS 2018 Security Operations Center Survey
Christopher Crowley2018-08-01https://www.sans.org/white-papers/d... - Osaka
Osaka
Christopher Crowley2018-03recording unavailable - Top8StepsForMobile AppAssessmentFocus
Top8StepsForMobile AppAssessmentFocus
Christopher Crowley2018-02-08recording unavailable - Use Case Development
Use Case Development
Christopher Crowley2017-11recording unavailable - Tokyo CommNight v001
Tokyo CommNight v001
Christopher Crowley2017-10recording unavailable - APAC SOC Summit Survey
APAC SOC Summit Survey
Christopher Crowley2017-09recording unavailable - Future SOC: SANS 2017 Security Operations Center Survey
Future SOC: SANS 2017 Security Operations Center Survey
Christopher Crowley2017-09recording unavailable - SOC Summit Survey Deep Dive
SOC Summit Survey Deep Dive
Christopher Crowley2017-06recording unavailable - Top8StepsForMobile AppAssessmentFocus Orlando
Top8StepsForMobile AppAssessmentFocus Orlando
Christopher Crowley2017-04-10recording unavailable - Threat Hunting
Threat Hunting
Christopher Crowley2017-04https://www.youtube.com/watch?v=pDY... - HummingBad Malware_CC_1000
HummingBad Malware_CC_1000
Christopher Crowley2016-12-09recording unavailable - MGT517 Course Flyer Managing Security Operations
MGT517 Course Flyer Managing Security Operations
Christopher Crowley2016-05recording unavailable - Tokyo SOC Presentation
Tokyo SOC Presentation
Christopher Crowley2015-07recording unavailable - Crowley_SOC_Summit
Crowley_SOC_Summit
Christopher Crowley2015-04-30recording unavailable - penTest HackFest AndroidCodeInspection
penTest HackFest AndroidCodeInspection
Christopher Crowley2015-01-27recording unavailable - CellularEavesdropping SD
CellularEavesdropping SD
Christopher Crowley2014-09-30recording unavailable
