Black Hat Europe 2025 | SCOMmand And Conquer - Attacking System Center Operations Manager

System Center Operations Manager (SCOM) environments are responsible for monitoring critical infrastructure yet introduce insecure defaults and an often-misconfigured attack surface within enterprise networks. This research exposes how SCOM's default configurations and architectural design choices create exploitable abuse paths that can lead to credential theft, lateral movement across monitored infrastructure, and ultimately, domain privilege escalation. This presentation will detail techniques for extracting account credentials, spoofing client enrollment, abusing credential relaying, and manipulating role-based access controls to takeover SCOM. We hope to leave you with a better understanding of SCOM's internal security architecture and tangible defensive guidance for securing SCOM deployments. By: Garrett Foster | Senior Security Researcher, SpecterOps, Inc Matt Johnson | Training Architect, SpecterOps, Inc. https://blackhat.com/eu-25/briefings/...

Join Today
Black Hat Europe 2025 | RMPocalypse: A Catch-22 Breaking AMDs Confidential Computing
▶︎

Black Hat Europe 2025 | RMPocalypse: A Catch-22 Breaking AMDs Confidential Computing

Keynote: After the AI Hype – What’s Real, and What’s Next - Richard Campbell - 2026
▶︎

Keynote: After the AI Hype – What’s Real, and What’s Next - Richard Campbell - 2026

OWASP's Top 10 Ways to Attack LLMs: AI Vulnerabilities Exposed
▶︎

OWASP's Top 10 Ways to Attack LLMs: AI Vulnerabilities Exposed

Zig 2026: No-AI Policy, $670K Foundation, Left GitHub & Why Zig Isn’t 1.0 - Andrew Kelley Explains
▶︎

Zig 2026: No-AI Policy, $670K Foundation, Left GitHub & Why Zig Isn’t 1.0 - Andrew Kelley Explains

Offensive Security - Automation and AI at DefCamp 2025
▶︎

Offensive Security - Automation and AI at DefCamp 2025

Black Hat Europe 2025 | Hacking Smart Cities One Building At A Time - A City Of A Thousand Zero Days
▶︎

Black Hat Europe 2025 | Hacking Smart Cities One Building At A Time - A City Of A Thousand Zero Days

Black Hat Europe | LINE-Break: Cryptanalysis And Reverse Engineering Of Letter Sealing
▶︎

Black Hat Europe | LINE-Break: Cryptanalysis And Reverse Engineering Of Letter Sealing

Cybersecurity Architecture: Networks
▶︎

Cybersecurity Architecture: Networks

How To Think SO CLEARLY People Assume You're A Genius
▶︎

How To Think SO CLEARLY People Assume You're A Genius

Attacking AI - Jason Haddix - NDC Security 2026
▶︎

Attacking AI - Jason Haddix - NDC Security 2026

How to Hide in Plain Sight: Next-Level Digital Privacy | Ivan Banov at BSidesCache 2025
▶︎

How to Hide in Plain Sight: Next-Level Digital Privacy | Ivan Banov at BSidesCache 2025

Vladan Nikolić: Car hacking for intermediate beginners
▶︎

Vladan Nikolić: Car hacking for intermediate beginners

Why Israel is the World's Top Hacking Nation | VICE: Cyberwar | Blueprint
▶︎

Why Israel is the World's Top Hacking Nation | VICE: Cyberwar | Blueprint

What to teach when AI writes the code | Rainer Stropek | TEDxLinz
▶︎

What to teach when AI writes the code | Rainer Stropek | TEDxLinz

Black Hat Europe 2025 | Low-Cost Memory Interposer Attacks On Confidential Computing
▶︎

Black Hat Europe 2025 | Low-Cost Memory Interposer Attacks On Confidential Computing

Black Hat Europe 2025 | The Forensic Trail On GitHub: Hunting For Supply Chain Activity
▶︎

Black Hat Europe 2025 | The Forensic Trail On GitHub: Hunting For Supply Chain Activity

Cybersecurity Architecture: Five Principles to Follow (and One to Avoid)
▶︎

Cybersecurity Architecture: Five Principles to Follow (and One to Avoid)

DEF CON 33 - Turning Camera Surveillance on its Axis - Noam Moshe
▶︎

DEF CON 33 - Turning Camera Surveillance on its Axis - Noam Moshe

DEF CON 32 - Inside the FBI’s Secret Encrypted Phone Company ‘Anom’ - Joseph Cox
▶︎

DEF CON 32 - Inside the FBI’s Secret Encrypted Phone Company ‘Anom’ - Joseph Cox

Andrej Karpathy: From Vibe Coding to Agentic Engineering w/ Stephanie Zhan
▶︎

Andrej Karpathy: From Vibe Coding to Agentic Engineering w/ Stephanie Zhan