Illus@malwarejake during your talk at #wwhf23 you gave some excellent advice for SMBs/SMEs to be careful/thoughtful about how and when they use cyber security consultants, are there specific deliverables that are generally a good fit in your experience?
#wwhf23 most of this advice applies to Fortune 500 orgs as well! Also, if you're looking for good, FREE phoshing awareness training for your SMB/SME, check out https://phishingquiz.withgoogle.com/
#wwhf23 Jake Williams: "Even if you're a security architect at a Fortune 500, you might take something away from this, but the talk was not written for you" - I don't think I've ever been targeted so specifically
#wwhf23 soooo many of these talks are finding new ways to say the same things, mostly "be excellent at the basics", "perfect is the enemy of good", "business leaders will choose insecurity over disruption to business ops", and "security people must communicate to non-security people in ways they can understand"
pezhore 
Success! The giant Anker battery pack was worth bringing to #WWHF - no power outlets in Track 2, but I can still charge my laptop while listening to Haley Mills talk about Operationalizing ATT&CK with Risk Based Alerting.
Eric Capuano.@WWHackinFest might be one of my new favorite conferences… it’s a hidden gem at an awesome venue and I highly recommend attending.
Had a blast running our Threat Hunting & IR with Velociraptor workshop for over 60 practitioners 🙌
#wwhf23 Jeff McJunkin may be my spirit animal.
#wwhf23 start with EDR enabled, attempt bypass, disable EDR on initially compromised machine only - makes zero sense to skip later techniques if EDR evasion fails, initial access is not a chokepoint