A Lazy Programmer’s Tips for Avoiding the SOC - Stuart McMurray

Abstract: What’s the difference between writing normal programs and writing hacker tools (or malware or Red Team code) on Linux? Not a lot, it turns out, at least not from the perspective of avoiding an awkward conversation with the SOC, sysadmins, and so on. In this talk, we’ll start with a nifty little tool of the sort the speaker uses from time to time, then jazz it up with a few single-digit-minute changes to become that much less likely to set off alarms while avoiding too much extra complexity or fragility. We’ll use Go in the talk, but the underlying principles are all fairly language-agnostic. Speaker Bio: Stuart McMurray; Lead Offensive Security Engineer Stuart is a Lead Engineer on the Offensive Security team at Klarna, where he focuses on Red Teaming, Unix, and general Swiss Army knifery. He's been on the offensive side of public and private sector security for upwards of a decade, during which time he's been an operator and trainer and developed a small arsenal of public and private offensive tools. #bsides #securitybsides #infosec #bsidesbelfast #belfast #bsidesbelfast24