RVAsec 14 Video: Paul Asadoorian – The Security Professional’s Guide To The Linux Desktop

July 14, 2025
SpeakerVideos

RVAsec 2025 Video: Paul Asadoorian
Principal Security Researcher – Eclypsium

Title: The Security Professional’s Guide To The Linux Desktop
Want to learn how running Linux as your desktop OS can make your life BETTER? This talk is for you! Every year the Linux nerds say, “This will be the year of the Linux desktop!”. If we put Android and ChromeOS aside for a moment, there has never been such a year. However, I switched to Linux on my laptops in 2016 and fully converted all my desktops in 2019. I’m never looking back. Many of you reading this are already thinking/voicing your opinions. I’ve heard for so many years, “I don’t want to run Linux as my desktop because [blank]”. This talk will dispel the myths and hopefully getting you on team Linux desktop! If you are open-minded about Linux as a desktop, haven’t tried it in a while, worried about Windows 10 going end-of-support in 2025, and want to learn about the benefits of the Linux desktop, this talk is for you. Maybe you even use Linux as your desktop OS and just want some tips and tricks; this is the talk for you. If you’ve already decided that Windows or MacOS is perfectly fine and Linux is just annoying, this talk may not be for you.

RVAsec 14 Video: Travis Altman – Running a proper Purple Team

July 11, 2025
SpeakerVideos

RVAsec 2025 Video: Travis Altman
Cybersecurity Leader

Title: Running a proper Purple Team
Some folks within cybersecurity have probably heard the concept of purple teaming but what is it like to actually execute or leverage this type of service? What value does it provide? Where should it exist within the organization? What other challenges might you face when performing purple teaming?

This talk will dive into details on how to go from the concept or infancy of purple teaming to executing at a higher level of maturity and everything in between. I’ll walk thru specific examples of purple team exercises then debrief outcomes and values of those engagements. I’ll also walk thru variations of purple teaming (e.g., simulation vs emulation) and describe when a certain variation might be appropriate and when. Last but not least I’ll explain how to perform purple teaming in various environments (e.g., endpoint, cloud, network) and considerations for operating in those conditions.

RVAsec 14 Video: Stacy Aitken – The Importance of an Incident Response Plan

July 10, 2025
SpeakerVideos

RVAsec 2025 Video: Stacy Aitken
Security Program Manager – Dragnet

Title: The Importance of an Incident Response Plan
An incident response plan (IRP) is a necessity. It can reduce damage, improve recovery time, reduce costs, comply with regulation, preserve evidence, and improve preparedness.

RVAsec 14 Video: Bruce Potter – Keynote

July 9, 2025
SpeakerVideos

RVAsec 2025 Video: Bruce Potter
CEO and Founder – Turngate

Title: Keynote
Bio: Bruce Potter has been doing cybersecurity for 30 years, which makes him kind of old. Bruce is currently the CEO and founder of Turngate, a SaaS audit log analysis company. Prior to that Bruce served as CISO at several companies including Clear Street, Expel, and the KeyW Corporation.

Bruce is the founder of The Shmoo Group and assisted with running ShmooCon, a cybersecurity conference that ran for the last 20 years in Washington DC. Bruce has done DARPA research, led red teams, broken large networks (in good and bad ways), and even helped bring Internet service to remote parts of Alaska in the mid-90’s.

RVAsec 14 Video: Mike Bailey – Attacking & Defending ServiceNow: A Hands-on Lab for Red & Blue Teams

July 5, 2025
SpeakerVideos

RVAsec 2025 Video: Mike Bailey
– Rotas Security

Title: Attacking & Defending ServiceNow: A Hands-on Lab for Red & Blue Teams
ServiceNow is a critical enterprise platform, often integrated with sensitive systems and privileged access. This talk explores how attackers can exploit misconfigurations and privilege escalation paths within ServiceNow to gain a foothold in an environment. We’ll walk through real-world attack techniques, from initial access to lateral movement, and demonstrate how defenders can detect and mitigate these threats.

In addition to offensive tradecraft, we’ll cover how to set up a dedicated lab to safely test these attack vectors, fine-tune detections, and improve defensive strategies. Whether you’re a red teamer looking to sharpen your tactics or a blue teamer aiming to strengthen your defenses, this talk will provide actionable insights and practical steps for securing ServiceNow.

RVAsec 15 – Save the Date!

June 25, 2025
AnnouncementConference

We’re turning 15 — and you’re invited to the celebration.

RVAsec 15 will be held on June 9-10, 2026, once again at the Downtown Richmond Marriott. Mark your calendars now — this is going to be the big one.

Over the past 15 years, RVAsec has grown from a local gathering to one of the premier cybersecurity events on the East Coast. We’ve hosted world-class speakers, pulled off legendary parties, sparked fierce CTFs, and built a community we’re incredibly proud of. Year 15 will honor that legacy–and raise the bar.

Location:
Downtown Richmond Marriott
500 East Broad Street
Richmond, Virginia, USA 23219

Sponsorships are already underway! If you’re interested in sponsoring RVAsec 15, please contact us as soon as possible — space will fill fast for this milestone year.

If you haven’t experienced RVAsec before, now’s your chance to see what it’s all about.

Catch the vibe on our YouTube channel, join our Discord server, sign up for the monthly meeting mail list, and make plans to be part of the RVAsec story!

Let’s make RVAsec 15 unforgettable.

RVAsec Discord: Old Server, New Life

June 23, 2025
Announcement

Today we’re officially launching the RVAsec Discord as the year-round home for our community—a place to connect, share, ask questions, post spicy takes, and continue the hallway track long after the conference ends.

We actually created the RVAsec Discord server back in August 2020. And… well… we never really did much with it. Like many great ideas from the pandemic era, it quietly existed in the background, untouched and unloved. Until now.

💬 What’s Inside?

We’ve built out a bunch of useful (and fun) channels, including:

  • #general-talk – the main hub for conversation
  • #general-conf-discussion, #cfp-discussion – for conference discussion and future speakers to get feedback
  • #monthly-social and #events – to keep up with and discuss our regular meetups
  • #infosec-chat, #red-team, #blue-team, #osint – for your technical fix
  • #jobs-and-gigs, #mentorship, #local-richmond – because RVA is home for many
  • And yes, there’s even a #bbq-and-bourbon channel (you knew that was coming!)

🧠 Why Join?

Because RVAsec isn’t just a yearly conference—it’s a community. And it’s a community that expands far beyond Richmond, VA. Yes, we come together every June, sure. But we also host monthly social meetups, organize occasional focused events, and now have a space where we can all stay connected in between with our friends and colleagues around the world.

No matter where you are on your security journey—just starting out, leveling up, or deep in the trenches—this is your space.

🔗 How To Join

🚪 Join us: https://discord.gg/gjD9dhBStN

  1. Head to the Discord server
  2. Read the #welcome-and-rules
  3. Say hi in #intros
  4. Jump into #general-talk and start posting

See you there!

RVAsec 14 “Passport for Prizes” Contest!

June 2, 2025
AnnouncementEvent

We are once again having the Passport for Prizes event at RVAsec! This event gives you the opportunity to win some awesome prizes from our participating sponsors. 

Visit 15 sponsor’s tables and get their initials or signature in the corresponding box. When completed, return your entry to registration for a chance to win.

Note: Your business information must be complete to be eligible*, and you must be present at the reception on Wednesday to win.

    • RVAsec “Mystery Bags” (2)
    • Advanced Logic – Apple Homepod Mini
    • Axonius – JBL Tune 660NC Wireless Headphones 
    • Blue Bastian – Flipper Zero
    • BullWall – LEGO: Star Wars Set
    • Checkpoint – Bose Waterproof Speakers
    • Corelight – LEGO: Star Wars Chopper Astromech Droid
    • Cyberark – Maui Jim Gift Card
    • Cyberhaven – AirPods Pro 2
    • Dragnet Cyber – LEGO: Technic NASA Mars Rover
    • Fortinet – Apple TV
    • Gigamon – Backpack cooler with Amazon GC, Emergency Car Tool, and more
    • Guidepoint Security – $100 Amazon Gift Card
    • Illumio – Bose Speaker
    • LayerX – Meta Ray Ban Glasses
    • Netskope – Ninja CREAMi Ice Cream Maker
    • Oligo Security – Nepresso Veruo Machine & Pods 
    • Ox Security – Bose SoundLink Micro Bluetooth Speaker
    • Rotas Security – $150 Amazon Gift Card
    • Rubrik – YETI Hopper Flip 8 Soft Cooler
    • Secure Ideas – LEGO: Shuttle Carrier Aircraft
    • Semperis – Hydro Flask 20L Backpack Cooler
    • Sentinel One – JBL Black Flip 5 Speaker
    • Snyk – Apple AirPods
    • Specter Ops – Ember Mug
    • sumo logic – Electric Scooter
    • Veem – $150 Visa Gift Card
    • VERITI – LEGO: Mario Kart Set

* Note: Contact information will be shared with Passport sponsors.

ExtraHop – RVAsec 14 Silver Sponsor

May 28, 2025
Sponsors

RVAsec is pleased to present ExtraHop as an RVAsec ’25 Silver sponsor!

ExtraHop provides cloud-native cybersecurity solutions to help enterprises detect and respond to advanced threats—before they compromise your business.

ExtraHop
X (Twitter): @ExtraHop

RVAsec 14 tickets are available now!

Lockpick Village & Contest Sponsored by Rotas Security

May 28, 2025
AnnouncementConference

Join us at the RVAsec Lockpick Village! 

Test your skills on a range of locks, including mini-doors, from easy to challenging, with a variety of picks at your disposal. There might even be a full size door as well. =)

Never picked a lock? Fret not! We have very beginner-friendly options available, as well as instructors to assist in your lockpicking education and adventures.

Think you’re a top-notch picker or want to challenge yourself? Then plan to enter our timed contest! Race through a series of locks and compete for the fastest time to win a prize.

To ensure everyone’s safety, we’ll provide hand sanitizer for use while you explore the ancient art of lockpicking.

Come by and have a blast with the team!

Rotas Security provides focused offensive cybersecurity solutions fortifying the security posture of organizations. We are experts in adversarial simulation, advanced persistent threat emulation, penetration testing, red teaming, attack surface analysis, and threat hunting.

Rotas Security