SO-CON 2025

The Shortest Path to Secure

Conference: March 31 – April 1, 2025
Training: April 2 – April 5, 2025
Location: Arlington, VA

Sign Up for Updates
Register to Attend

SO-CON 2025 features talks, trainings, and networking events focused on identity-based security and Attack Paths. It kicks off the week with a two-day main conference and ends with a selection of four-day trainings.

Discover

Explore the newest methods, tools, and research for identity-based Attack Paths.

Learn

Deepen your understanding of adversary tradecraft with cutting-edge talks and hands-on sessions.

Meet

Connect with fellow industry professionals throughout an immersive week of learning.

REGISTRATION

Conference Tickets

Includes access to all in-person talks, evening social events, and more!

Are you a member of the U.S. Government or press? Email socon@specterops.io
for special rates on tickets.

Please read our Code of Conduct.

Register Now

EARLY BIRD (50% OFF)

$497.50

ENDS DECEMBER 1st

STANDARD PRICE

$995

ENDS MARCH 30th

Looking to save more? Register for a training session below and get a free pass to the conference.

TRAININGS

Upgrade your skills by taking one of our four different courses.

Free Conference Pass Included

Engage with our Frontline Practitioners

Evening Social Events

This intense course immerses students in a single simulated enterprise environment, with multiple networks, hardened endpoints, modern defenses, and active network defenders responding to red team activities. We will focus on in-depth attacker tradecraft post-initial access; braking out of the beachhead, establishing resilient command and control (C2) infrastructure, gain situational awareness through opsec aware host and network enumerations, perform advanced lateral movement and sophisticated Active Directory escalation, gain persistence (userland, elevated, and domain flavors), and perform advanced Kerberos attacks, data mining, and exfiltration.

Register Now

Identity-driven Offensive Tradecraft offers an in-depth look at identity-driven attacks, targeting both on-premises and hybrid identities. Participants will learn how to abuse the intricacies of different authentication and authorization mechanisms to traverse on-premises and cloud environments, gain access to integrated systems, and even cross tenants. Participants will also be equipped with a practical approach to identifying known attack paths and forging new ones within complex operational environments and across people, processes, and technology.

Register Now

Get Your Head in the Clouds! Through hands-on labs, this course teaches participants how to identify misconfigurations in Azure that are commonly leveraged by attackers. Participants should expect to walk away from Adversary Perspectives: Azure with a strong foundation of Azure security knowledge and first step on their journey of attacking or defending corporate Azure and Entra (Azure AD) environments.

Register Now

In Adversary Tactics: Tradecraft Analysis, we will present and apply a general tradecraft analysis methodology for offensive TTPs, focused on Windows components. We will discuss Windows attack techniques and learn to deconstruct how they work underneath the hood. For various techniques, we will identify the layers of telemetry sources and learn to understand potential detection choke points. Finally, the course will culminate with students creating their own technique evasion and detection strategy. You will be able to use the knowledge gained to both use your telemetry to create robust detection coverage across your organization, and truly assess the efficacy of that coverage.

Register Now

SO-CON 2025 TALKS

Testimonials

Hear What Others Have to Say About SO-CON

Over the course of a week, SO-CON 2024 featured insightful talks and comprehensive training courses designed to deliver maximum value to all attendees. Hear from our guests as they share their experiences and insights in these video testimonials.

LOCATION

Questions? Email socon@specterops.io

Convene

1201 Wilson Blvd.

Arlington, VA 22209

Secure Your Spot

Use this Email Template to help justify your attendance at SO-CON 2025

Summit Justification

Subject: Request for Approval to Attend SO-CON 2025

Dear [Manager’s Name],

I am requesting approval to attend SO-CON 2025, a premier cybersecurity summit that is hosted by SpecterOps and is taking place in Arlington, VA from March 31 – April 1, 2025.

The conference will be an invaluable opportunity for professional development, offering a comprehensive exploration of the latest trends, research, case studies, and firsthand experiences from frontline practitioners. I believe that attending this event will greatly benefit our team and enhance our capabilities.

Here are some key points about SO-CON 2025 that highlight its significance:

  • In-depth Sessions: The talks will explore recent research and practical approaches to identifying, reducing, and detecting Attack Paths in the enterprise, including innovative techniques for combating identity-based Attack Paths. View the full list of talks here: https://specterops.io/so-con/#talks
  • Relevant Topics: The event will cover the latest trends in identity-based security and Attack Paths, explore Attack Path Management, and showcase offensive security research at SpecterOps.
  • Registration: We can secure our conference pass at a price of $995, making it a cost-effective investment in my professional growth.

OPTIONAL

I have estimated the cost of attendance to be approximately $XX:

  • Conference pass: $XX
  • (Optional) Training: $XX
  • Travel: $XX
  • Accommodations: $XX
  • Meals: $XX (breakfast and lunch will be provided at the event)

To secure the conference pass or on-site training, I need to register by <X date>. I would appreciate the opportunity to discuss this further at your earliest convenience. Thank you for considering my request, and I look forward to the possibility of representing our team at SO-CON 2025.

Best Regards,

[Your Name]
[Your Position]
[Your Contact Information]

Back Download Template