Make the Most of Black Hat 2025 with Armis
Visit Booth #3233
See live demos of Armis Centrix™, the leading cyber exposure management platform. Gain full asset visibility, prioritize what matters, and respond to threats faster. Discover More
Book a 1:1 Strategy Session
Meet privately with Armis executives and experts to explore how leading organizations reduce risk and build scalable security programs. Let’s Talk Security
Attend Our Exclusive VIP Parties
THE Power-Up Party | Aug 5, 6–8:30 PM | Don’t Miss Out
THE Unplugged Party | Aug 6, 6–8:30 PM | Book Your Place
Don’t Miss the Armis Spotlight Session
Attacks on Critical Infrastructure: Why Preemptive Security Matters
Nadir Izrael, CTO & Co-Founder, Armis
Aug 6, 10:15–11:05 AM PT | Act Before It’s Too Late
Win and Give
Redeem prizes and trigger donations to St. Jude at our booth.
Visit CrowdStrike in Booth #2733 to explore how the CrowdStrike Falcon® platform, powered by Charlotte AI and leading adversary intelligence, delivers unmatched speed, precision, and protection across endpoints, identities, cloud, and more.
Attend our live demos and theater sessions to earn one of this year's collectible adversary figurines!
Live Demos
See the latest AI innovations live and in action and learn how to secure your enterprise in the AI age.
Theater Sessions
Gain insight from CrowdStrike experts on Next-Gen SIEM, cloud security, identity protection, managed services, Charlotte AI, and beyond.
CrowdStrike: We Stop Breaches.
Come visit us at Booth #3546, chat with our security experts and create your customized socks at our SOC bar! Security is a data problem - and Elastic Security solves it. Built on open source, powered by AI at its core and powerful analytics that scales across data lakes, Elastic helps security analysts detect and respond to threats faster. It’s one unified solution for SIEM, XDR, and cloud security — trusted by defenders and built for your SOC.
Visit ExtraHop in Booth #4346
ExtraHop helps enterprises stay ahead of evolving threats with the most comprehensive approach to network detection and response (NDR). By combining NDR, performance monitoring, intrusion detection, and forensics in one integrated console, customers gain full network visibility and the context needed for data-driven security decisions.
Speaking Session:
Raja Mukerji, Co-founder & Chief Scientist
Aug 6, 1:30 PM – Mandalay Bay L
Topic: Uncovering Hidden Threats: The Power of Network Data
Hunter Challenge Race
Compete to win:
PS5, Meta Quest 3S, and Nintendo Switch!
Live Demos & Lightning Talks
Visit the booth for schedules.
Fortinet will have 12 presentations on products as well as presentations from alliance partner in a theater within our booth.
In-Booth Presentations
Wednesday, August 6, 10:30 A.M.
CERT-ainly Undetected: Sneaky Code Execution
Speakers: Cedric Van Bockhaven, Red Team Operator, Max Grim, Red Team Operator
Wednesday, August 6, 11:30 A.M.
Breaking MS Office code signing
Speaker: Stan Hegt, Manager & Security Specialist
Wednesday, August 6, 1:30 P.M.
Cobalt Strike automation: from .cna to MCP
Speakers: Chris Thorpe, Principal Software Engineer, Pieter Ceelen, Manager & Security Specialist
Wednesday, August 6, 3:00 P.M.
Orchestrating Modern Implants with LLVM
Speaker: Austin Hudson, Sr. Cybersecurity Researcher
Thursday, August 7, 10:30 A.M.
MacOS EDR Internals
Speaker: Kyle Avery, Principal Offensive Specialist Lead
Thursday, August 7, 11:30 A.M.
CERT-ainly Undetected: Sneaky Code Execution
Speakers: Cedric Van Bockhaven, Red Team Operator, Max Grim, Red Team Operator
Find out what’s really happening on the frontlines: Meet us in Las Vegas to see the techniques and tactics from the most recent campaigns Mandiant experts have investigated and our newest innovations on the technology side. Improve your skill set with training directly from our frontline cyber security experts. Attend sessions with Google experts:
Trainings***: Attacking Mobile Applications: Practical Security Testing for Android and iOS - Aug 2-5
Trainings***: Advanced Topics in Malware Analysis - Aug 2-5
Sponsored Session (50-min): Bridging the AI Reality Gap* | Wed Aug 6 | 10:15am-11:05am | Level 2 | Mandalay Bay
Sponsored Session - Business Hall (20-min): Participate in an OT IR with Mandiant Consulting* | Wed Aug 6 | 3:15pm-3:35pm | Business Hall, Theater D | Mandalay Bay
Briefing (40-min): Autonomous Timeline Analysis and Threat Hunting: An AI Agent for Timesketch** | Wed Aug 6 | 3:20pm-4:00pm | Mandalay Bay H, Level 2 | Mandalay Bay
Arsenal: Harbinger: An AI-Powered Red Teaming Platform for Streamlined Operations and Enhanced Decision-Making* | Wed Aug 6 | 4:00pm | Business Hall, Arsenal Station 1 | Mandalay Bay
Threat Space Workshops* | Wed Aug 6 | 1:50pm-2:40pm and 3:50pm-5:00pm | Oceanside F | Mandalay Bay
Sponsored Session (50-min): The Ransomware Response Playbook* | Wed Aug 6 | 4:45pm-5:35pm | Business Hall, Theater A| Mandalay Bay
Briefing (40-min): FACADE: High-Precision Insider Threat Detection Using Contrastive Learning** | Thurs, Aug 7 | 10:20am-11:00am | Oceanside A, Level 2 | Mandalay Bay
Arsenal: Timesketch: AI-Powered Super Timeline Analysis* | Thurs Aug 7 | 1:00pm - 1:55pm | Business Hall, Arsenal Station 7 | Mandalay Bay
----Skip the long lines for coffee and join us at The Google Cloud Security Hub (next door to Libertine Social), to refresh and recharge. Contact your Google representative to learn how to get access.----
Catch Huntress and John Hammond at Black Hat!
Session: Lesser-Known Linux Persistence Mechanisms
Date/Time/Location: Wednesday, August 6, Theater B, 4:25 PM
Think you know Linux persistence? Think again. Join John Hammond as he rips the lid off stealthy tricks threat actors use to hide in plain sight—backdoored commands, shady configs, timestamp spoofing, and more. This isn’t your average cron job talk. Whether you’re red team or blue team, you’ll walk away with practical detection tips and a sharper eye for persistence techniques that often fly under the radar.
Continue the conversation at booth #2451.
Microsoft Security delivers AI-first, end-to-end protection powered by unmatched threat intelligence and real-world response. Visit booth #2246 to hear from Microsoft Security experts as they share the latest on our unified platform and expert-led managed services in live demos and presentations. You’ll also be able to connect with our Microsoft Intelligent Security Association (MISA) partners — the top experts from across the cybersecurity industry. And while at the booth, schedule a 1:1 meeting at a time that suits your schedule to discuss your security needs with our team of subject-matter experts.
Attend our Main Stage presentation “Unmasking Cyber Villains: How Microsoft Stays Ahead of the World’s Most Dangerous Hackers” on Thursday, August 7 at 12:15 PM to go behind the scenes with Microsoft's threat intelligence, incident response, and threat hunting leaders to learn how they operate as a unified force. You'll discover the techniques used to uncover hidden malicious activity, attribute nation-state groups, and enhance global protection through real-time feedback loops.
As the first cybersecurity company with ISO42001 Certification, Mimecast is revolutionizing how organizations manage and mitigate human-centered security risks with AI ethically and responsibly.
Visit booth #3846 at Black Hat for:
Featured Session: Don't miss "Cybersecurity, Responsible AI, and Data Privacy in the Generative Age" on Wednesday at 2:05pm in Theater D.
Request a meeting now to secure your time with the Mimecast team while onsite:
At Palo Alto Networks, innovation is behind everything we do. We’re committed to pushing boundaries to relentlessly deliver what’s next in cybersecurity, especially when it comes to AI. And there's no better place than Black Hat to unveil our latest AI-powered advancements and industry-leading solutions. Stop by booth #3240 and learn more about the latest developments across the full Palo Alto Networks platform of security products.
Visit us at Booth #3741 at Black Hat USA and enter the Picus Exposure Casino, where today’s exposure management meets real validation.
Join our live demos and expert-led discussions to discover how Picus replaces guesswork with evidence, empowering security teams to cut patch backlogs by 86% and focus on what truly matters. Try your luck at our casino-style games, or put your skills to the test in our evidence-based challenge to see firsthand how validation beats chance.
Enjoy handcrafted coffee and leave with exclusive swag.
Because in cybersecurity, proof beats predictions, and validation always wins over luck.
Meet with 7AI at Black Hat
Already deployed in production at enterprise environments ranging from 1,000 to over 250,000 employees, 7AI is reclaiming thousands of hours of human work, saving between 30 minutes and 2.5 hours per investigation.
Visit 7AI at Booth 1940
Stop by for a one-of-a-kind experience. Reimagine yourself – if you weren’t in cybersecurity, who would you be? A DJ, filmmaker, chef? We’ll snap your photo and transform it into a custom magazine cover, printed on-site and featured in our gallery.
While you're there, catch live demos of the leading agentic security platform and hear directly from customers as they walk through real-world outcomes and use cases.
Attend Our Speaking Session: "The Rise of the Chief Innovation Security Officer: How AI in Security is Changing Our Approach to Security Operations"
Join Travis Farral, CISO of Archaea Energy, and Kyle Kurdziolek, VP of Security at BigID, on Wednesday, August 6 at 2:35 PM in Theater A as they share real-world lessons on operationalizing AI security agents in their environments.
Join Our Podcast
We just launched the 7AI podcast, "Do Human Work", and will be recording episodes at Black Hat. If you or someone else would like to be a guest, let us know and we'll book a recording slot.
AI-Powered Cybersecurity. Human-Led Expertise.
Sophos is a global leader in innovating and delivering advanced cybersecurity solutions, protecting over 500,000 organizations and millions of users worldwide. Our Managed Detection and Response (MDR) and AI-driven protection stop ransomware, phishing, and other advanced threats with precision and speed.
Visit us at Booth #2740 for live demos, expert insights, and a chance to win a Nintendo Switch 2.
Don't miss our main stage presentation Composition of the Agentic SOC with John Peterson, our Chief Development Officer, August 6th at 1:30pm at Mandalay Bay 1.
Afterparty Alert: Join us at the HyperX Arena (Luxor Hotel) on August 6, 7:00–10:00 PM for gaming, networking, and more.
Don’t just use the tools. Meet the people who built them. From BloodHound and Mythic to Ghostwriter and more, meet the SpecterOps team at booth #4527.
We’re tackling the toughest identity security challenges with Identity Attack Path Management, delivering solutions, tools, and training grounded in real-world adversary tradecraft.
See It in Action
Watch live demos of BloodHound Enterprise and learn how to find, prioritize, and shut down identity attack paths.
Hear from the Experts
Learn from the SpecterOps team as they share insights, practical techniques, and real-world stories from the field.
Arsenal Sessions
We’re also hosting six Arsenal sessions where our team will showcase tools and research:
Crucible C2 — Jonathan Owens
Ghost Scout – Phishing AI Agent — Forrest Kasler, Kieran Croucher, Rebecca Allor, Max Andreacchi
Nemesis 2.0 — Will Schroeder, Lee Chagolla-Christensen
SCCMHunter — Garrett Foster
Leveraging JAMF for Red Teaming in Enterprise Environments — Lance Cain, Daniel Mayer
Clustered Points of Failure – Attacking Windows Server Failover Clusters — Garrett Foster
Stop by and let’s talk about protecting your environment against identity-driven threats and building stronger security defenses.
At Tenable, we help you Get It Together — with exposure management, cloud security, and more to keep you ahead of threats.
Visit us at booth #2440 to learn how you can Get It Together by attending one of our theater talks or having a 1:1 demo from one of our experts. Demo participants and theater talk attendees will be then be invited to create a custom Get It Together t-shirt at our t-shirt bar.
Stop at Booth #1933 to meet the Cyber Hero Team and pick up some swag and endpoint security knowledge.
Catch CEO & Co-Founder Danny Jenkins presenting “Simplifying Cybersecurity” in Mandalay Bay J at 10:15am on Thursday and then return to booth #1933 for a deeper dive into default-deny techniques with on-demand hacking demonstrations and the latest in ThreatLocker protection.
Start your Black Hat festivities with our Welcome Reception on Tuesday night – all this and more is linked below.
Trend Micro is everywhere at Black Hat 2025! Stop by booth #3540 for Trend Vision One™ demos, compete in the Threat Hunt Challenge (win a DJI Mini drone!), and celebrate 20 years of the Trend Zero Day Initiative™. Join expert sessions on EV-charger hacking, ISO 15118, and Red Team tactics; plus, AI Summit deep dives on agentic AI, AI-driven threats, and securing enterprise AI. Cap it off at our Flanker Takeover with great food, drinks, and networking.
We will have an interactive CTF at Varonis' booth during Black Hat for attendees to play, earn swag, and enter to win a prize. Created by Varonis Threat Labs, this experience was built to help defenders understand how today’s threat actors exploit misconfigurations in Snowflake environments, a growing target for cybercriminals.
varonis.wistia.com/medias/nptjlmb0k8
Play Operation Frostbyte, the first Snowflake GOAT, at the Varonis booth (#2751) during Black Hat!
Created by Varonis Threat Labs, this CTF experience was built to help defenders understand how today’s threat actors exploit misconfigurations in Snowflake environments, a growing target for cybercriminals. Participants who play during the conference will be entered into a drawing to win a Nintendo Switch 2.
Save the data before a full-fledged avalanche occurs!
Vectra AI will be at Black Hat USA 2025 (August 6–7) at Booth #4534, showcasing the Vectra AI Platform and offering live demos that highlight why we are the leader in NDR. We’re hosting a speaking session on August 6 about closing attack gaps across identity, network, cloud, and endpoints. On August 7, we’ll deliver an Arsenal demo of Halberd, our LLM-powered, multi-cloud attack emulation tool. Visitors can also enjoy custom interactive games, win one-of-a-kind swag, and engage with our cyber experts throughout the event.
Swing by booth #4830 for a private tour of the Cyber Security Museum and for a chance to win a raffle of some of the exhibition items.
Protect Your Digital Landscape
ZeroFox is the trusted leader in intelligence-powered Digital Risk Protection (DRP) solutions that seamlessly integrate Threat Intelligence (TI) and External Attack Surface Management (EASM) capabilities to proactively disrupt phishing and fraud campaigns, impersonations, credential theft, data breaches, and physical threats targeting an organization’s brands, domains, and people.
Experience how we disrupt digital threats at Booth #4046 —plus a chance to win a Nintendo Switch 2.
Don’t miss our Chief Technology Officer , Mike Price, who will distill more than a decade of ZeroFox work into a powerful talk on evolving beyond legacy CTI to a digital-physical threat intel framework. Attend the Live Session: From Intel to Action: Evolving from Cyber Threat Intelligence to Digital-Physical Threat Intelligence, Wednesday, August 6 | 10:15am-10:35am ( Business Hall Theater B )
ZeroFox's exclusive Level Up Party is back for the 9th year in a row! Join us at the Skyfall Lounge at the top of the W Las Vegas at 9pm PST. Register here for your party wristband!
Zero In on Our Daily Booth Sessions
Drop by booth #2251 to learn from the industry’s best. Palo Alto Networks, Horizon3, and our very own Zero teammates will be on stage serving up actionable, no-BS conversations.
Aug 6 & 7 @ 11:00-11:15 AM
The Microsegmentation Project You Can Actually Complete: Shifting the Security Burden Back to Attackers
Aug 6 & 7 @ 12:00-12:15 & 1:00 - 1:15 PM
From the Frontlines: How Zero Customers Segmented in Days not Years
Aug 6 & 7 3:00-3:15 PM
Zero Networks + Horizon3.ai: Automated segmentation with automated validation
Aug 7th @ 2:00-2:15 PM
Better Together: Zero Networks + Palo Alto Networks
Aug 6th @ 4:00-4:15 PM
Microsegmentation Without the Macro Headache: How Does Zero Do It?
Aug 6th @ 5:00-5:15 PM
We're dropping a big, new product feature. Come check it out!
Ooni Pizza Oven raffle @ booth #3551!
