Blue Team Con 2026

10:30am CDT

Using Pentest Findings to Improve Detections

Saturday September 12, 2026 10:30am - 11:30am CDT

Most penetration test reports get filed and forgotten. SOC teams never confirm whether their alerts fired during the engagement, and adversaries keep reusing the same techniques. This session shows blue teamers how to digest a penetration test report and turn every pentest finding into a working detection.
We'll break down pentest reports from the SOC's perspective, focusing on the methodology sections where attacker behavior is documented with command line invocations, tooling, and attack narratives. We'll cover what artifacts to require from testers before the engagement begins, including timestamped command logs, source and target IPs, compromised accounts, and MITRE ATT&CK technique IDs.
Attendees will leave with a repeatable feedback loop for transforming pentest results into measurable detection improvements, supported by tools like Sigma, Atomic Red Team, VECTR, and Caldera.

Speakers

Ashley Knowles

Cyber Security Analyst, Black Hills Information Security

As a Security Consultant, Ashley’s role is to perform network (internal/external), social engineering, and cloud penetration tests, as well as participating in red team assessments. Since joining the infosec community in 2013, she has developed and taught hacking classes, worked... Read More →

Saturday September 12, 2026 10:30am - 11:30am CDT
Swissôtel Chicago 323 E Wacker Dr, Chicago, IL 60601, USA

Talk

Company Black Hills Information Security
Audience Intermediate
Subject Threat Hunting and Red Teaming
global Y

Blue Team Con 2026

From $0.00

Tickets

Success you have shared X tickets.

Blue Team Con 2026

10:30am CDT

Ashley Knowles

Get help with the event

Choose your checkout method

Success you have shared X tickets.

Blue Team Con 2026

10:30am CDT

Ashley Knowles

Get help with the event