RVAsec

Nick Popovich’s passion is learning and exploring technology ecosystems, and trying to find ways to utilize systems in unexpected ways. His career has focused on adversarial threat simulation, offensive and defensive security, and advanced technical security assessments. He is a hacker. He is also a veteran of the U.S. Army Signal Corps, and has worked in the public and private sectors, performing advanced cyber security assessments. Nick currently runs Rotas Security, an offensive cybersecurity services company specializing in penetration testing and adversary emulation. He’s a lifelong learner and loves finding new ways to get under the hood of systems and networks. He is a father of three and a husband to one.

X (Twitter): @pipefish_

Attacking & Defending ServiceNow: A Hands-on Lab for Red & Blue Teams (<– add to your schedule)

ServiceNow is a critical enterprise platform, often integrated with sensitive systems and privileged access. This talk explores how attackers can exploit misconfigurations and privilege escalation paths within ServiceNow to gain a foothold in an environment. We’ll walk through real-world attack techniques, from initial access to lateral movement, and demonstrate how defenders can detect and mitigate these threats.

In addition to offensive tradecraft, we’ll cover how to set up a dedicated lab to safely test these attack vectors, fine-tune detections, and improve defensive strategies. Whether you’re a red teamer looking to sharpen your tactics or a blue teamer aiming to strengthen your defenses, this talk will provide actionable insights and practical steps for securing ServiceNow.

Come see Nicholas Popovich at RVAsec 13!