HD Moore to map attack paths, reveal segmentation gaps

HD Moore, creator of Metasploit and CEO of runZero, will lead a live webinar that maps attack paths and exposes network segmentation gaps. Registration is open for the live event; those who cannot attend will receive the recording.

Moore will show how attackers view networks and explain why relying only on patching can fall short. He will present his view that zero-day vulnerabilities continue to appear and that automated exploit development can outpace many organizations’ patch cycles, making it important to limit what a successful foothold can reach.

The session will contrast static asset inventories with dynamic maps of attack paths. Moore plans to demonstrate cases where devices intended to be isolated connect different zones: multi-homed systems wired into two networks, unregistered devices answering on unintended segments, and groups of machines hidden behind industrial protocol gateways that common scanners miss.

Attendees will be shown techniques to find unsanctioned IT, unmanaged IoT and sub-assets behind OT gateways that evade routine discovery. The webinar will cover methods to identify links that break segmentation and to visualize the paths an attacker could use to reach critical systems, with the aim of focusing remediation on the assets and connections that shorten an attacker’s route.

Moore’s remark: “You don’t control which bug lands. You control what it can reach once it does.” He also observes: “Inventory is a list. Attackers read a map.”

Moore built the Metasploit penetration-testing framework and now runs runZero, a company focused on discovering unknown assets and connections. The webinar follows broader industry concern that defenders cannot rely solely on rapid patching and must address how compromised systems move laterally across networks.