This is a virtual edition of our user group, with a special focus on Cloud Katana & Power Automate. We have made the decision to host this event virtually again, and we are excited to be able to open up our local user group to the global stage! We have an evening with diverse and advanced topics prepared for you presented by experienced speakers. Registration through Eventbrite is optional, with the benefit that you’ll receive an email notification with the streaming link and a calendar invite.
Speakers
We have the following speakers presenting:
Agenda
The event will take place on the 12th of October, all times here are listed in CEST.
- 1900-1915 Jaap Brasser & Barbara Forbes – DuPSUG KickOff
- 1915-2000 Roberto Rodriquez – Cloud Katana: Unlocking Serverless Computing to Assess Security Controls
- 2000-2045 Jaap Brasser – Get more out of Power Automate with PowerShell
- 2045-2100 DuPSUG Open Discussion
Speaker Information
Roberto Rodriquez
Roberto Rodriquez is a Principal Threat Researcher and Security Engineer at the Microsoft Threat Intelligence Center (MSTIC) R&D team. He is the founder of the Open Threat Research (OTR) community and author of several open source projects, such as the Threat Hunter Playbook, Security Datasets, OSSEM, SimuLand, ATT&CK Python Client, and more. You can learn more about Roberto’s contributions to the InfoSec community in here: https://github.com/OTRF
Jaap Brasser
Jaap Brasser is a Senior Developer Advocate at Rubrik and a multi-year recipient of Microsoft Azure MVP award. He has a big passion for scripting and automation and whenever he is not writing his next script or module, he spends his time fiddling around with APIs.
Sessions
Cloud Katana: Unlocking Serverless Computing to Assess Security Controls
Cloud Katana is an open-source cloud native serverless application built on the top of Azure Functions to empower threat researchers to orchestrate the execution of adversarial techniques in the cloud and hybrid environments. The main goal the project is to validate detection rules and learn the underlying behavior of an attack. In this presentation, I will show you how I use Azure Functions to expose a web API to listen for HTTP requests and use server-less compute to execute/trigger attack simulations. In addition, I will show you how I secure the project with built-in Azure AD authentication and authorization features and use other serverless services such as CosmosDB to store and analyze some of the results.
Get more out of Power Automate with PowerShell
Location
The event is hosted virtually, and participation is encouraged, do feel free to join our online meeting and have you microphone ready if you want to ask questions directly! Signing up through Eventbrite is not required, but you will receive a link to the meeting by email a day before the event takes place. We will also publish the link to the event on Twitter, an hour before the event on the @DuPSUG account. When signing in to the meeting please use first and last name, or reach out before the event.