Scheduled Tasks are created for all the right reasons. Automation, maintenance, convenience. Then they accumulate, get forgotten and are left behind unmonitored. Hiding dangerous secrets: stored credentials, privileged contexts, and broken tiering that can lead to full domain compromise. Tired of manually reading XMLs at 2 a.m. in engagements, I wanted to change this.

In this session we will shine a light on this blind spot. Introducing a new way to automate the discovery and analysis of scheduled tasks across the internal environment, helping red and blue alike to identify hidden attack paths and privilege misconfigurations at scale by leveraging TaskHound and OpenGraph. What used to be a tedious, manual and error-prone process becomes a structured, graph-based exploration of your environment’s weakest links. (Please don't use a Scheduled Task to run TaskHound).