Jason Lang
TrustedSec Red Team, @curi0usJack
Jason Lang is the practice lead of the Targeted Operations group at TrustedSec, an industry leader in offensive security services. The Targeted Operations group consists of some of the industry’s finest red team operators and researchers and is responsible for performing red team assessments for some of the world’s largest organizations across industry verticals. When not red teaming, Jason can be found in his woodland hermit castle pushing a jack plane, drinking coffee, or doing country chores.
Talks & Q&A
Conference | Sep 19
TTP Treasure Hunt: Mining VXUG for Red Team Tactics
Practical takeaways for turning malware research into red team wins.
Description
Malware authors and red teams share a common goal: bypassing defenses to achieve their objectives. Sites like vx-underground offer a treasure trove of malware source code, samples, and papers that reveal the latest TTPs used by real-world bad guys. In this talk, we’ll explore how red teams can mine these resources to enhance their own adversary emulation playbooks. From persistence to evasion, we’ll break down key findings from recent vx-underground papers, demonstrate their applicability in modern red teams, and discuss how these insights can challenge defense teams. Expect practical takeaways, maybe a demo or two, and a roadmap for turning malware research into red team wins—without needing a PhD in reverse engineering.
Why the committee chose this talk
Every security research can be used in a malicious way. Lets find out some new ideas.
