Interactive, live-stream cybersecurity training, August 17 (MDT). Register by tomorrow to save $150.

Brussels September 2019

Brussels, Belgium | Mon, Sep 2 - Sat, Sep 7, 2019
This event is over,
but there are more training opportunities.

SANS NVISO Social Night

  • Thursday, September 5th, 6:00pm - 9:00pm

On September 5th, you are welcome to attend the SANS @ NVISO Community night at the Radisson Blu Royal Hotel in Brussels. You are welcome to join us as of 6:00PM for some drinks and networking after which we invite you to two inspiring and educational sessions provided by our very own SANS instructor and NVISO founder Erik van Buggenhout and his colleague Jeroen Beckers.

If you are attending one of the SANS Courses taught at SANS Brussels you are welcome to join this evening at no extra charge.

If you are not registered for any of the SANS courses and you would like to attend this event, please register via this link.

Program for the evening :

6.00 PM : Welcome drinks, snacks & networking

7.00 PM : Automated adversary emulation using Caldera

7.45 PM : Taking a Look at Mobile Malware

8.30 PM : Closing drinks

Session 1 - Automated adversary emulation using Caldera by Erik Van Buggenhout

MITRE ATT&CK is quickly gaining traction and is becoming an important standard to use to assess the overall cyber security posture of an organization. Tools like ATT&CK Navigator and Caldera facilitate corporate adoption and allow for a holistic overview on attack techniques and how the organization is preventing and detecting them. Furthermore, many vendors, technologies and open-source initiatives are aligning with ATT&CK. Some more information on Caldera from the official documentation (

"CALDERA is an automated adversary emulation system that performs post-compromise adversarial behaviour within Windows Enterprise networks. It generates plans during operation using a planning system and a pre-configured adversary model based on the Adversarial Tactics, Techniques & Common Knowledge (ATT&CKā¢) project. These features allow CALDERA to dynamically operate over a set of systems using variable behaviour, which better represents how human adversaries perform operations than systems that follow prescribed sequences of actions."

During this talk, Erik will demonstrate some Caldera strong points and weaknesses and how it can be further improved (e.g. how can we build additional steps to increase our ATT&CK coverage or how can we adapt steps to handle new Windows 10 security features such as ExploitGuard and AMSI).

Session 2 ā Taking a Look at Mobile Malware by Jeroen Beckers

Just like desktop computers, smartphones can become infected with malware. But what does that mean exactly? How does malware get installed? How does it evade detection? What can it do? Is malware equally prevalent on iOS and Android? Can I protect myself?

The answers to these questions and many more are given in this talk by Jeroen Beckers, the mobile security lead at NVISO.

Bonus Sessions

The following bonus sessions are open to all paid attendees at no additional cost. There are many different types of events that fall into these categories:

  • SANS@Night: Evening presentations given after day courses have ended. This category includes Keynotes.
Tuesday, September 3
Session Speaker Time Type
R U Serious? Security, Hacking, and Trolling on the Web Moses Frost Tuesday, September 3rd, 6:00pm - 7:00pm SANS@Night
A BEAST and a POODLE celebrating SWEET32 Bojan Zdrnja Tuesday, September 3rd, 7:00pm - 8:00pm SANS@Night
Thursday, September 5
Session Speaker Time Type
SANS NVISO Social Night Thursday, September 5th, 6:00pm - 9:00pm SANS@Night