Detecting Command and Control Frameworks via Sysmon and Windows Event Logging

Threat Hunting via DeepBlueCLI v3

What's Up With Sysmon and the Windows Event Viewer?

Turn Off the Vacum And Sit Back and Laugh 🤣

Quando A Diferença De Altura É Muito Grande 😲😂

Это мое последнее предупреждение | 4 серия | Сериал "ПрАкурор" | КОНКУРС

Чистка воды совком от денег

Detecting Command and Control Frameworks via Sysmon and Windows Event Logging

Рет қаралды 3,630

SANS Cyber Defense

SANS Cyber Defense

Күн бұрын

Пікірлер

@gitgudsec 4 ай бұрын

One of my favourite speakers, just such effortless flow and delivery, complete grasp and mastery of his subject material, thanks Eric - you da man.

@AlexCastrillo-m8c

@AlexCastrillo-m8c 3 ай бұрын

That was incredible. Great talk and so easy to follow along and take in.

Threat Hunting via DeepBlueCLI v3

59:16

Threat Hunting via DeepBlueCLI v3

SANS Cyber Defense

Рет қаралды 3,5 М.

What's Up With Sysmon and the Windows Event Viewer?

18:25

What's Up With Sysmon and the Windows Event Viewer?

Level1Techs

Рет қаралды 35 М.

Turn Off the Vacum And Sit Back and Laugh 🤣

00:34

Turn Off the Vacum And Sit Back and Laugh 🤣

SKITSFUL

Рет қаралды 9 МЛН

Quando A Diferença De Altura É Muito Grande 😲😂

00:12

Quando A Diferença De Altura É Muito Grande 😲😂

Mari Maria

Рет қаралды 20 МЛН

Это мое последнее предупреждение | 4 серия | Сериал "ПрАкурор" | КОНКУРС

19:20

Это мое последнее предупреждение | 4 серия | Сериал "ПрАкурор" | КОНКУРС

Я ОТ САКЕ

Рет қаралды 1,3 МЛН

Чистка воды совком от денег

00:32

Чистка воды совком от денег

FD Vasya

Рет қаралды 5 МЛН

Hack The Box SOC Analyst Lab - Logjammer (Windows Event Logs)

30:49

Hack The Box SOC Analyst Lab - Logjammer (Windows Event Logs)

MyDFIR

Рет қаралды 4,2 М.

Window's Logs on Steroids! SYSMON - Let's Deploy a Host Intrusion Detection System #10

23:13

Window's Logs on Steroids! SYSMON - Let's Deploy a Host Intrusion Detection System #10

Taylor Walton

Рет қаралды 11 М.

Threat Hunting via Sysmon - SANS Blue Team Summit

51:01

Threat Hunting via Sysmon - SANS Blue Team Summit

SANS Institute

Рет қаралды 63 М.

Working with X.509 Keys and Certificates

51:47

Working with X.509 Keys and Certificates

OpenSSL

Рет қаралды 218

How To Actually Use Covenant C2 For Command and Control

15:37

How To Actually Use Covenant C2 For Command and Control

Elevate Cyber

Рет қаралды 10 М.

Windows Event Forwarding and Event Collectors In-Depth

57:40

Windows Event Forwarding and Event Collectors In-Depth

SANS Cyber Defense

Рет қаралды 12 М.

Build it Once, Build it Right: Architecting for Detection - SANS Tactical Detection Summit 2018

45:47

Build it Once, Build it Right: Architecting for Detection - SANS Tactical Detection Summit 2018

SANS Institute

Рет қаралды 10 М.

Best Antivirus/EDR vs Unknown Ransomware

11:38

Best Antivirus/EDR vs Unknown Ransomware

The PC Security Channel

Рет қаралды 122 М.

Windows Event Logs Investigation with Powershell | CTF Walkthrough

24:14

Windows Event Logs Investigation with Powershell | CTF Walkthrough

Motasem Hamdan | Cyber Security & Tech

Рет қаралды 988

Understanding Sysmon & Threat Hunting with A Cybersecurity Specialist & Incident Detection Engineer

57:52

Understanding Sysmon & Threat Hunting with A Cybersecurity Specialist & Incident Detection Engineer

Lawrence Systems

Рет қаралды 10 М.

Turn Off the Vacum And Sit Back and Laugh 🤣

00:34

Turn Off the Vacum And Sit Back and Laugh 🤣

SKITSFUL

Рет қаралды 9 МЛН