BEGIN:VCALENDAR
VERSION:2.0
PRODID:-//pretalx//cfp.securityfest.com//2026//speaker//8PCKJC
BEGIN:VTIMEZONE
TZID:CET
BEGIN:STANDARD
DTSTART:20001029T040000
RRULE:FREQ=YEARLY;BYDAY=-1SU;BYMONTH=10
TZNAME:CET
TZOFFSETFROM:+0200
TZOFFSETTO:+0100
END:STANDARD
BEGIN:DAYLIGHT
DTSTART:20000326T030000
RRULE:FREQ=YEARLY;BYDAY=-1SU;BYMONTH=3
TZNAME:CEST
TZOFFSETFROM:+0100
TZOFFSETTO:+0200
END:DAYLIGHT
END:VTIMEZONE
BEGIN:VEVENT
UID:pretalx-2026-9G7B9Q@cfp.securityfest.com
DTSTART;TZID=CET:20260529T162000
DTEND;TZID=CET:20260529T170000
DESCRIPTION:You've successfully compromised your target. How do you maintai
 n access in the face of reboots\, crashes\, credential resets\, and active
  remediation?\n\nIn this presentation\, we take a deep dive into stealthy 
 persistence techniques that go far beyond the basic Windows services\, run
  keys\, and cron jobs. We explore the latest attacker tradecraft that abus
 es trusted components and blends into normal enterprise operations.\n\nThe
  talk covers persistence techniques derived from novel research and techni
 ques observed in the wild from my work as a Principal Forensic Consultant.
  These techniques evade modern detection/AV/NDR/EDR and\, more importantly
 \, are difficult for forensic investigators to identify and eradicate. We 
 also examine how to exploit the limitations in modern forensic tooling and
  common DFIR workflows. \n\nFinally\, the presentation distills these find
 ings into practical attacker tradecraft for maintaining covert\, resilient
  access in enterprise networks.
DTSTAMP:20260625T172723Z
LOCATION:Main Stage
SUMMARY:Stayin' Alive: Stealthy Persistence in Enterprise Environments - Al
 exander Andersson
URL:https://cfp.securityfest.com/2026/talk/9G7B9Q/
END:VEVENT
END:VCALENDAR