Videos

Justin Kohler, VP of Product at SpecterOps, shows how BloodHound Enterprise can be used to find and fix Active Directory (mis)configurations that could let attackers easily own your entire enterprise.

Andrew Morris, GreyNoise founder and CEO demonstrates how people use the GreyNoise sensor network.

Senior Sales Engineer Ali Cheikh demonstrates runZero to Risky Business host Patrick Gray.

runZero is a cyber asset management tool that combines active scanning, passive discovery, and API integrations to discover IT, OT, and IoT assets (both managed and unmanaged) across your network, including cloud, mobile, and remote environments.

Get a free trial here: https://www.runzero.com/trial/

Ryan Kalember shows Risky Business host Patrick Gray Proofpoint’s Sigma platform. Sigma is a data loss prevention and insider threat detection tool that crunches data from different sources and presents a unified view of it.

In this demo Tines CEO and co-founder Eoin Hinchy demonstrates the Tines no-code automation platform to host Patrick Gray.

Brett Winterford and Harish Chakravarthy demonstrate to host Patrick Gray how Okta can be used for passwordless authentication. These phishing resistant authentication flows — even if they are not rolled out to all users — can also be used as a high-quality signal of phishing attempts that can be used to trigger automated follow-on actions.

Stairwell’s Mike Wiacek demonstrates Stairwell’s file analysis and threat detection platform to Risky Business host Patrick Gray.

Nucleus Security’s COO Scott Kuffer shows Patrick Gray their vulnerability management platform. It ingests scan outputs from a number of vulnerability identification tools, normalises that information and then allows vulnerability management teams to do things like assign responsibility for certain types of bugs to the correct people.

Sergio Gonzalez tells host Patrick Gray about the Red Canary managed detection and response service.

00:42 The pitch 03:10 Ingested data types 05:10 Red Canary Platform 07:10 Customer set 07:56 Reducing false positives, maximising SNR 08:37 Reports to customers 09:00 Detections are typically rare 10:37 The console 12:02 Mitre ATTACK view 13:14 Steps after detection & improving security 15:09 Response I: manual 16:19 Response II: automation 19:35 Supported endpoint solutions EPP & EDR 20:36 Cloud service telemetry 24:50 Wrap up

David Cottingham, CEO of Airlock Digital, shows Patrick how Airlock’s execution control and allowlisting solution works.