Announcements   |   Jul 29 2019 | Andy Robbins

SpecterOps @ Black Hat 2019 & DEF CON 27


SpecterOps is happy to be returning to Black Hat 2019 as speakers, trainers, and a sponsor this year. We have grown quite a bit over the last year and we are excited to have that reflected in our increased presence at the conference. Along with 45+ of our team members hanging out at the conferences, we will be giving 2 training courses, a talk, a workshop at Black Hat, 2 arsenal presentations, and hosting the BloodHound happy hour.

This year, we are focusing on how we are bringing visibility to Active Directory attack primitives that enable adversaries to gain wide-scale compromise. Active Directory is heavily targeted in numerous attacks against organizations of all sizes. However, organizations often struggle with understanding the complexity and weaknesses that are introduced over the lifetime of production use. We believe that highlighting and bringing transparency to Active Directory weaknesses that enable attacker will allow defenders, identity teams, and system administrators understand the implications of permission and behavioral decisions for managing their Active Directory environment.

This year, we’re also proud to sponsor the Wicked6 Cyber Games, a cyber exhibition fundraiser to benefit women & girls hacker camps, to be held on August 8th in the Luxor HyperX ESports Arena. This is a new event and it will raise funds for the Women’s Society of Cyberjutsu. The event is designed as a “college competition meets esports”, where six teams will compete in an variety technical missions. More information on the event can be found here:

At Black Hat

Stop by our Booth

We are returning this year to Black Hat as a sponsor with a bigger and (hopefully) better booth. For those of you who met us last year, you knew that we were a bit overwhelmed in our space. We upgraded this year to accommodate better information sharing in small group settings and also allow for (the always important) mass swag distribution. We like to approach business development in our own way, by first looking to spread our message to the community (and get people familiar with our capabilities). Knowing our capabilities, if organizations feel we could assist in improving the security posture of their enterprises, we are happy to talk. What we do not want is to try to convince folks to work with us. We intend to implement this methodology at our booth this year by giving demonstrations and presenting information on the capabilities we produce for the community first. If that turns into a conversation about potential business opportunities, then we will be excited to chat further.

SpecterOps will be at booth 2504, which can be found in the sponsorship hall where Arsenal is hosted. We are trying for a design that is akin to a nice restaurant, where we hope we can see a number of people, relax, and have engaging discussions. If you are interested in chatting, we would love for you to stop by. If you cannot find us, send a Twitter DM to @SpecterOps and we will be happy to direct you to our team members.

Again this year, SpecterOps is supporting Andy Robbins in his effort to support the Muscular Dystrophy Association (MDA). Andy spearheaded a fundraising effort to create a limited edition BloodHound shirt for Black Hat. Our team members bought roughly 150 of these shirts this year, which we will have to give away at the booth. However, given that these were bought to support MDA, we will not be directly charging money for the shirts, but we do ask that you make a small donation to MDA in order to extend the charity campaign.



Workshop: Tactics, Techniques, and Procedures To Attack Active Directory

When: Session 1 – 10:00AM, Session 2 – 11:30AM, Session 3 – 2:00PM, Session 4 – 3:45PM
Where: South Seas IJ
By: Andy Robbins (_wald0), Rohan Vazarkar (@cptjesus), Will Schroeder (@harmj0y)

Tool: Ghostwriter

When: 2:30PM
Where: Arsenal Station 6
By: Chris Maddalena (@cmaddalena)


Tool: Apfell: Multi-Platform Command and Control

When: 10:00AM
Where: Arsenal Station 10
By: Cody Thomas (@its_a_feature_)

Talk: Finding Our Path: How We’re Trying to Improve Active Directory Security

When: 11:00AM
Where: South Seas ABE
By: Andy Robbins (_wald0), Rohan Vazarkar (@cptjesus), Will Schroeder (@harmj0y)

Event: BloodHound Users Meetup – Ticket Required

When: 5:00PM
Where: Brooklyn Bowl
By: SpecterOps

Training Sessions

Adversary Tactics: Red Team Operations

August 3-6
Tracks: PenTesting, Network—red-team-ops-14189

Adversary Tactics: Detection

August 3-6
Tracks: Defense, Forensics—detection-14190


While we do not have any official SpecterOps events at DEF CON 27, one of our team members (Gabriel Ryan) is hosting an wireless attacks workshop (details below). Several of our team members will also be hanging around various spaces and events at the conferences, such as the Red Team Village. If you were hoping to meet up with us from something specific, but couldn’t make it to Black Hat, send a Twitter DM to @SpecterOps and we will see if we can meet up at DEF CON instead.

Workshop: Advanced Wireless Attacks Against Enterprise Networks – Ticket Required

When: Thursday, August 8, 2019 2:30 PM – 6:30 PM
Where: Flamingo Las Vegas – Red Rock VII
By: Gabriel Ryan (@s0lst1c3)
Register at: