Chris Gatford
Chris Gatford is the Founder and Director of HackLabs in Sydney, Australia and performs penetration tests for organisations all around the world.  Chris has reviewed countless IT environments and has directed and been responsible for numerous security assessments for a variety of corporations and government departments.  Specifically, and somewhat uniquely Chris has been performing Penetration Testing for over 10 years commercially. Chris has co-authored “Network Security Assessment: From Vulnerability to Patch” from Syngress Publishing. Chris is also a frequent speaker at many security related conferences. Chris is a member of several security professional organisations and is a Certified Information Systems Security Professional.  Chris has appeared on ABC News, Channel 10 News, Bloomberg TV and ABC’s Four Corners.

TUTORIAL: Social Engineering - Practical Lessons from the Field

HackLabs will illustrate during our tutorial case studies from our field testing of HackLabs' Social Engineering Methodology. Examples in which we have video and audio will be presented of various techniques in action. As well as a hands on lab with some of the tools utilised during physical testing. The tutorial will demonstrate how HackLabs have infiltrated and extracted the most sensitive information from organisations (whom have engaged HackLabs) around Australia. The tutorial will delve into the mechanics of the attacks and how it was successful in exploiting the target. Techniques which will be illustrated to allow attendees to understand the methods used as well as the why they work at almost all organisations. These Include;
  • In-Person Elicitation Techniques
  • Physical Security Control Bypassing
  • Communication based attacks
  • How to build a Security Awareness Training ProgramFor the common attack methods we will also present countermeasures which would have prevented all of the techniques from being successful. HackLabs will provide real work policies and controls that have been implemented to protect against these attacks which have been field proven in organisations. The tutorial will make use of printed material, presentations, live demonstrations and video footage of Social Engineering exercises being executed. This is a highlights collection from HackLabs - The Red Team - Training (