ShimCache and AmCache enterprise-wide hunting - SANS Threat Hunting Summit 2017

  Рет қаралды 9,022

SANS Digital Forensics and Incident Response

SANS Digital Forensics and Incident Response

Күн бұрын

Пікірлер: 7
@somebodyThen
@somebodyThen 3 ай бұрын
came from my FOR508 which references this talk. excellent lesson.
@marcus.edmondson
@marcus.edmondson 7 жыл бұрын
This presentation is fantastic!
@donovancrosby7043
@donovancrosby7043 3 жыл бұрын
Instablaster
@mmay2318
@mmay2318 6 жыл бұрын
Fantastic tool, was able to jump in and process data for about 3500 endpoints without much setup :) great work!
@SecureTheWorld
@SecureTheWorld 4 жыл бұрын
Matt May how did you collect the shimcache and amcache across those hosts?
@borjam.2358
@borjam.2358 7 жыл бұрын
Parece un buen tío
@ncoppersmith
@ncoppersmith 7 жыл бұрын
The closed caption seems to be from a different talk or something. Very distracting!
Real-Time Threat Hunting - SANS Threat Hunting & Incident Response Summit 2017
28:10
SANS Digital Forensics and Incident Response
Рет қаралды 38 М.
Threat Hunting with Network Flow - SANS Threat Hunting Summit 2017
18:30
SANS Digital Forensics and Incident Response
Рет қаралды 19 М.
“Don’t stop the chances.”
00:44
ISSEI / いっせい
Рет қаралды 62 МЛН
Что-что Мурсдей говорит? 💭 #симбочка #симба #мурсдей
00:19
Quando A Diferença De Altura É Muito Grande 😲😂
00:12
Mari Maria
Рет қаралды 45 МЛН
The Audit Log Was Cleared - SANS Digital Forensics and Incident Response Summit 2017
26:37
SANS Digital Forensics and Incident Response
Рет қаралды 4,2 М.
Keynote: Cobalt Strike Threat Hunting | Chad Tilbury
45:45
SANS Digital Forensics and Incident Response
Рет қаралды 32 М.
Incident Response in the Cloud (AWS) - SANS Digital Forensics & Incident Response Summit 2017
28:02
SANS Digital Forensics and Incident Response
Рет қаралды 20 М.
Let's Talk About Shimcache - The Most Misunderstood Artifact
21:51
So Many Ducks, So Little Time - SANS Threat Hunting Summit 2017
28:06
SANS Digital Forensics and Incident Response
Рет қаралды 1,4 М.
Visualizing transformers and attention | Talk for TNG Big Tech Day '24
57:45
Functional Programming in 40 Minutes • Russ Olsen • GOTO 2018
41:35
GOTO Conferences
Рет қаралды 821 М.
ShellBag Forensics
14:08
13Cubed
Рет қаралды 30 М.
Threat Hunting in Security Operation - SANS Threat Hunting Summit 2017
27:39
SANS Digital Forensics and Incident Response
Рет қаралды 41 М.
AmCache Investigation - SANS Digital Forensics & Incident Response Summit 2019
29:15
SANS Digital Forensics and Incident Response
Рет қаралды 6 М.
“Don’t stop the chances.”
00:44
ISSEI / いっせい
Рет қаралды 62 МЛН