I just published my Trip Report from an amazing week at B-Sides SF and #RSAC2025! Highlights, photos, and everything in between — check it out here:
https://shehackspurple.ca/2025/05/09/rsac2025/
@hrbrmstr According to El Reg, it was a "last-minute addition to the agenda." I wonder how last-minute we're talking here, because I would have expected a lot more conversation about this at #bsidessf. Was it today?
RSAC's agenda pages are both normally inscrutable, and apparently resistant to archive.org snapshotting, so it's hard to say when Kristi Noem was added to the schedule.
(I generally don't care about the talks so I never pay much attention to the lineup, since I'm just here for expo tomfoolery, but I didn't realize that RSAC wanted to make a direct play for that CPAC audience...)
What’s up #BSidesSF!
Today I’m gunning for:
@wendynather’s keynote
@jgamblin’s CVE quality talk
@jackhcable’s Lessons from #CISA talk
@rk’s OT devices talk
and certainly more!
This is by far the biggest screen I have ever presented in front of. #bsidessf
I’m always happy to take an opportunity to save an early-carreer netsec neophyte from the heartache of the totally fake and not real OSI model.
When someone [you're talking to] asks you “what’s new” at a conference, the very worst answer is “same old thing.” You have a chance to remind them of who you are, what makes you special, tell a funny story like “I don’t think I’ve seen you since X happened...” Even if you want to say “same old thing,” you can say, ‘It’s amazing, but I’ve been farming cabbage for 16 years now! Whodda thunk?"
#BSidesSF lunch tip: Tropisueño has the best habanero salsa anywhere, and it’s not nuclear hot.
I'll be at the 4PM Meshtastic talk at #BSidesSF. Hope to see some of you there!
There are two dragons inside you, according to the #BSidesSF t-shirt design.
It’s pretty rad.
I've been at #BSidesSF long enough to eat breakfast and already had a conversation that paid for the weekend. I could go home now and come out ahead.
Linecon at #BSidesSF isn't too long, and is (slowly) moving.
In the words of @0x00string , good morning bbs!
If you’re particularly stoked for some #bsidessf happening this weekend, use the hashtag to spread the love!
For me, today:
Sharing Vulnerabilities at 10:15
Charting the SSH Multiverse at 13:30
Tracking the World’s Dumbest Cyber Mercenaries at 15:00 (but also the 0.0.0.0 vulns and LOLbins talks look great at the same time)
Using AI to Discover Silent Patches at 15:45
Modern Network Fingerprinting at 17:00
Here be dragons and Yetis... SFO is officially filled with people clad in all black with cybersecurity logos aplenty. Let the games begin! Join us tomorrow at #BSidesSF. We'll be sponsoring all the outdoor social fun, plus @hdm takes the stage at 1:30 PT to present "Charting the SSH Multiverse." Journey through the multitude of SSH implementations, their specific weaknesses, real-world exposures, and some late-breaking new research and insights!
Also be sure to track down our fearless crew - including @todb and @rk - to say hello, talk about our cool new exposure management features, and grab some very 
swag made just for this week's events!
Let's get this party started! Join us all week in SF at these events: https://www.runzero.com/san-francisco-2025/
We are hosting the Lockpick Village at #BSidesSF this weekend and looking forward to seeing so many old and new friends! We'll see you tomorrow!
Security isn’t just a priority — it’s a passion. 
This Sunday at @BSidesSF, Tailscale’s @patrickod will share how he found a long-standing CSRF bug in the gorilla/csrf Go lib.
Don’t miss it 
(theatre 14)
https://bsidessf2025.sched.com/event/1x8UA
https://bsidessf.org/streams
San Francisco
! Plus, stop by our booth for a chance to win a Flipper Zero 
!