Abstract

In continuation of my "Abuse" series , I'm hereby presenting a session on Abusing MSSQL. This will be a series of exploits that will include some key areas which is a 'Must-Know' for pentester / red teamer, enabling them look at any MSSQL related vulnerabilities / misconfiguration / features effectively. This presentation has cool demos that will give you a practical approach and understanding.
Hopefully this series of session will change the perspective of attackers and defenders towards MSSQL.

Speaker

Chirag Savla

Chirag Savla is a Cyber Security professional with 9+ years of experience. His areas of interest include penetration testing, red teaming, azure and active directory security, and post-exploitation research. He prefers to create open-source tools and explore new attack methodologies in his leisure. He has worked extensively on Azure, Active Directory attacks, defense, and bypassing detection mechanisms. He is an author of multiple Open Source tools such as Process Injection, Callidus, etc. He has presented at multiple conferences and local meetups and has trained people in international conferences like Blackhat, BSides Milano, Wild West Hackin’ Fest.
He blogs at https://3xpl01tc0d3r.blogspot.com
Twitter: @chiragsavla94
Github: https://github.com/3xpl01tc0d3r

Timing

Starts at Saturday November 24 2018, 11:20 AM. The sessions runs for about 1 hour.

Resources