Loading…
Streaming: https://mssvideo.vcu.edu/RVAsec
← Back to schedule
Attacking & Defending ServiceNow: A Hands-on Lab for Red & Blue Teams
Wednesday June 4, 2025 10:30am - 11:20am EDT
Upstairs, Grand Ballroom F/G
ServiceNow is a critical enterprise platform, often integrated with sensitive systems and privileged access. This talk explores how attackers can exploit misconfigurations and privilege escalation paths within ServiceNow to gain a foothold in an environment. We’ll walk through real-world attack techniques, from initial access to lateral movement, and demonstrate how defenders can detect and mitigate these threats.

In addition to offensive tradecraft, we’ll cover how to set up a dedicated lab to safely test these attack vectors, fine-tune detections, and improve defensive strategies. Whether you’re a red teamer looking to sharpen your tactics or a blue teamer aiming to strengthen your defenses, this talk will provide actionable insights and practical steps for securing ServiceNow.
Speakers
avatar for Mike Bailey

Mike Bailey

Smither of Locks, ROTAS
Mike Bailey has almost 2 decades of varied experience working in private industry, academic institutions, US government and every aspect of the financial industry. Mike's focus is all things security. He brings a robust subject matter expertise within the areas of adversarial threat... Read More →
avatar for Nicholas Popovich

Nicholas Popovich

Principal, Rotas Security
Nick Popovich's passion is learning and exploring technology ecosystems, and trying to find ways to utilize systems in unexpected ways. His career has focused on adversarial threat simulation, offensive and defensive security, and advanced technical security assessments. He is a hacker... Read More →
Wednesday June 4, 2025 10:30am - 11:20am EDT
Upstairs, Grand Ballroom F/G
  Technical

Attendees (9)


Log in to save this to your schedule, view media, leave feedback and see who's attending!

Tweet Share
Need help? View Support Guides
Event questions? Contact Event Planner
©2025 Sched About Privacy Terms
Share Modal

Share this link via

Or copy link