Ryan Watson
Ancestry - Red Team Lead
Salt Lake City, Utah, United States
Actions
With over a decade of experience as a security engineer and red team operator, I bring a comprehensive and diverse skill set to cybersecurity. I hold ISC2, CompTIA and the SANS Institute certifications, including SSCP, Security+, GCIH, GSEC, and GPEN. I possess deep expertise in ethical hacking, security architecture, physical penetration testing, web application security, and more. My journey in cybersecurity has equipped me with skills in scripting, reverse engineering, exploit development, incident response, and forensics.
As a proactive leader in red team operations, I identify and exploit vulnerabilities across networks, cloud infrastructures, and Active Directory configurations. My role involves conducting rigorous penetration testing and vulnerability assessments, delivering actionable insights and recommendations to strengthen organizational security posture and resilience.
I am passionate about continuous learning and actively sharing my knowledge with fellow security professionals through training, mentoring, and collaborative efforts. My expertise extends globally, having conducted operations worldwide, including training at renowned events like Black Hat, where I was a course instructor for the "Dark Side Ops" course by Silent Break Security.
Links
Area of Expertise
Topics
Password! At The Disco
"Password!AtTheDisco: Uncovering Authentication Chaos in the Enterprise" explores the critical yet often overlooked domain of password security auditing across complex, multi-domain environments. This presentation introduces an innovative open-source tool that transcends traditional password cracking by incorporating privilege escalation pathways via HaveIBeenPwned and BloodHound analysis, identifying cross-domain lateral movement risks, and applying a CVSS-style risk scoring methodology to prioritize remediation efforts. Through real-world case studies and demonstrations, attendees will learn how to quantify password risk beyond simple complexity rules, visualize attack paths enabled by credential reuse, and effectively communicate these findings to both technical teams and executive stakeholders using the tool's comprehensive reporting capabilities.
Dirty Little DotNet Hooker - Hooking .Net applications with Frida for Red Team Ops
In this presentation, we will delve into the powerful capabilities of Frida, an open-source dynamic instrumentation toolkit. We will specifically focus on its application in hooking .NET applications from a red team perspective. Attendees will learn about the architecture of .NET applications and the challenges associated with reverse engineering and exploitation.
We will demonstrate how to set up Frida to manipulate .NET applications in real time, showcasing techniques for intercepting API calls, modifying application behavior, and extracting sensitive data. The presentation will cover practical use cases, including bypassing security measures, analyzing application flow, and uncovering vulnerabilities.
Join us to explore the intersection of .NET security and dynamic analysis and enhance your toolkit for effective red teaming and penetration testing!
Slides:
https://github.com/watson0x90/Presentations
Project:
https://github.com/watson0x90/DirtyLittleDotNetHooker
Ryan Watson
Ancestry - Red Team Lead
Salt Lake City, Utah, United States
Links
Actions
Please note that Sessionize is not responsible for the accuracy or validity of the data provided by speakers. If you suspect this profile to be fake or spam, please let us know.
Jump to top