Are PenTesters Worried about Machine Learning?

Are PenTesters Worried about Machine Learning?

Nope.  They bypass tools like Cylance all the time.  Static ML before execution can be useful to classify known threats and commodity malware.  But APT and pentesters do not work like that.  Modern pentesters do not even use exploits/exes much.  They guess passwords,...
Is Black Hat Still a Good Security Conference?

Is Black Hat Still a Good Security Conference?

The very best actually.  The people.  The trainings.  The talks.  The vendors.  The networking (hi to my OSI friends).  The parties (thx Synopsys for another fun CodenomiCON).  Every year, I see old friends from awesome companies that I only see once a year in Vegas...