BlueHatIL 2017

Guy Barnhart-Magen

January 31, 2017

UPDATE: I just learned today that Microsoft shared some of the decks and videos from BlueHat IL. They can be found here

Microsoft Israel has successfully launched the BlueHat IL conference in Israel for the first time. Unexpectedly, this conference was not focused on marketing or pushing their agenda but rather on security related topics from excellent speakers.

I attended the first day, and I am kind of sorry I missed the second day. Following are the talks I saw with some slides I took during the talks.

Advances in Cloud-Scale Machine Learning for Cyberdefense Mark Russinovich, Microsoft Bigger animation

Invoke-Obfuscation: PowerShell obFUsk8tion Techniques & How To (Try To) D"“eTecT ‘Th’+‘em’ Daniel Bohannon, Mandiant

Defending the Cloud: Lessons from Intrusion Detection in SharePoint Online Matt Swann, Microsoft Bigger animation

The Binary Whisperer Marion Marschalek Bigger animation

TrustZone TEEs - An Attacker’s Perspective Gal Beniamini, Google Bigger animation

Device Guard Attack Surface, Bypasses, and Mitigations Matthew Graeber & Casey Smith, Veris Group Bigger animation

![](2017-01-24 09.30.20.jpg)

In the arena there were some cool sumo-bot competitions, the robots are built on Arduino with a dedicated kit, costs about 100$ a piece.

![](2017-01-24 09.00.16.jpg)

GE built a nice CTF/Challange focused around attacking a nuclear plant facility, with an interactive model.

![](2017-01-24 09.26.16.jpg)

![](2017-01-24 09.26.19.jpg)