Automated Human Vulnerability Scanning with AVA

by Laura Bell
Sept. 18, 2017 1 comment Black Hat belen_caty Pen Testing & Audits

Technical vulnerability scanning is now mature and commoditised, allowing us to repeatably test and adapt our systems in the face of a changing threat landscape. The time has come to apply the same logic to our people, actively understand human connectivity and behaviours when faced with threat and understand the effect of this behaviour with our organisations. This talk will discuss why this is a difficult challenge and introduce AVA, the first automated human vulnerability scanner that allows us to map the connectivity of our people, test them with a range of security threats and measure their behaviour. A tool built to make human security risk (and the effectiveness of our countermeasures and training) measurable.

Steven Ulm 8 months, 1 week ago

AVA could prove being an extremely useful tool for vulnerabilities, but I am wondering who will be really checking AVA for them?