Stephen Sims
FellowResearch Fellow
Specialities
Offensive Operations
SEC504: Hacker Tools, Techniques, and Incident Handling
SEC504Offensive Operations
SEC660: Advanced Penetration Testing, Exploit Writing, and Ethical Hacking
SEC660Offensive Operations
- GIAC Exploit Researcher and Advanced Penetration Tester (GXPN)
- 6 Days (Instructor-Led)
- 46 CPEs / 46 Hours (Self-Paced)
- Labs: 30 Hours of hands-on instruction
Virtual Events
Explore content featuring this instructor’s insights and expertise.
- Slide 1 of 9
バグ発見のための最新のファジング技術
Red Teamなどで働く攻撃技術の専門家の方であっても、既知の脆弱性を利用して侵入を行った経験はあるものの、自身で脆弱性の発見に取り組んだことのある方はそれほど多くありません。Jim ShewmakerとStephen Simsはファジングのコンセプトと具体的な手法について解説し、最新のファジング技術のデモを行います。何をファジングするべきか、どのような種類があるのか、どのようにそのバグを悪用するのかなどの質問を1時間のセッションでカバーしていきます。
WebinarCyber Defense
- 15 Feb 2023
- 11:00 UTC
- Stephen Sims & James Shewmaker
- Slide 2 of 9
Getting Started with Fuzzing for Bug Discovery
A lot of offensive security professionals have experience weaponizing simple vulnerabilities, but may not have worked much with bug discovery. Join Jim Shewmaker and Stephen Sims as they talk through fuzzing concepts and methodology, and then jump into a demonstration on setting up a modern fuzzing harness. What should you fuzz for? What types of fuzzing is there? How do you know if a bug is weaponizable? We’ll aim to answer these questions and more in this one hour session.
WebinarCyber Defense- 15 Feb 2023
- 11:00 UTC
- Stephen Sims & James Shewmaker
- Slide 3 of 9
What Works for Strategic Recruitment, Hacker’s View on Product Security, & CISO Perspectives: Evolving Trends & Challenges
Join us for an interactive SANS Day where cybersecurity experts and enthusiasts come together to explore the latest trends, challenges, and innovations in the field. This event promises a full day of insightful presentations, hands-on experiences, and valuable networking opportunities, and is designed for professionals at all levels. You will have the opportunity to engage with SANS Instructors and hear their insights on cybersecurity threats, customer landscape, AI, and how you can continue to development and advance in your career path. This is a must attend event for anyone passionate about staying ahead in the rapidly evolving world of cybersecurity. Don't miss out on the chance to learn, engage, connect, and grow in your cybersecurity journey!
WebinarCyber Defense
- 28 Feb 2024
- 10:30 UTC
- Ed Skoudis, Stephen Sims, James Lyne + 1 more
- Slide 4 of 9
The AI Battlefield, Promoting Your Path, Cybersecurity Horizon, and Closing Remarks
Join us for an interactive SANS Day where cybersecurity experts and enthusiasts come together to explore the latest trends, challenges, and innovations in the field. This event promises a full day of insightful presentations, hands-on experiences, and valuable networking opportunities, and is designed for professionals at all levels. You will have the opportunity to engage with SANS Instructors and hear their insights on cybersecurity threats, customer landscape, AI, and how you can continue to development and advance in your career path. This is a must attend event for anyone passionate about staying ahead in the rapidly evolving world of cybersecurity. Don't miss out on the chance to learn, engage, connect, and grow in your cybersecurity journey!
WebinarArtificial Intelligence
- 28 Feb 2024
- 14:00 UTC
- Stephen Sims, Frank Kim, James Lyne + 3 more
- Slide 5 of 9
The Always-On Purple Team: An Automated CI/CD for Detection Engineering
Join Stephen Sims and Erik Van Buggenhout as they present, "The Always- On Purple Team: An Automated CI/CD for Detection Engineering", which they previously introduced at RSA Conference 2024. During this webcast, they will share tips on building the always-on purple team!
WebinarOffensive Operations
- 3 Sep 2024
- 12:00 UTC
- Stephen Sims & Erik Van Buggenhout
- Slide 6 of 9
Updates to our Advanced Purple Team class - SEC699
We are excited to invite you to an exclusive webcast where we'll unveil the latest updates to the SEC699 SANS Purple Teaming course. This session will provide an in-depth look at the enhancements we've made to ensure that our course remains at the forefront of cybersecurity training.
WebinarOffensive Operations
- 23 Sep 2024
- 11:00 UTC
- Stephen Sims & Erik Van Buggenhout
- Slide 7 of 9
Using AI/ML for Vulnerability Research
Join me in this talk where we will utilize an AI Chatbot to aid us in vulnerability discover and exploitation.
WebinarOffensive Operations- 24 Mar 2025
- 18:00 AEDT
- Stephen Sims
- Slide 8 of 9
Continuous Penetration Testing: Rethinking Offensive Security in an Ever-Changing Threat Landscape
Annual penetration testing is no longer enough to keep pace with modern threats.
WebinarOffensive Operations- 3 Apr 2025
- 11:00 UTC
- Stephen Sims, Chris Dale, Joshua Wright + 1 more
- Slide 9 of 9
Identity Governance and Administration Powered by Risk Context – A Crucial Next Step in Enterprise Security zzz
Identity Governance and Administration Powered by Risk Context – A Crucial Next Step in Enterprise Security
WebinarArtificial Intelligence
- Mark Baggett & Stephen Sims