This Company Got Hacked... but HOW?
Рет қаралды 90,223
7 ай бұрынjh.live/pwyc || Jump into Pay What You Can training at whatever cost makes sense for you! jh.live/pwyc
This lab exercise: jh.live/logs-ir
Free Cybersecurity Education and Ethical Hacking
🔥KZbin ALGORITHM ➡ Like, Comment, & Subscribe!
🙏SUPPORT THE CHANNEL ➡ jh.live/patreon
🤝 SPONSOR THE CHANNEL ➡ jh.live/sponsor
🌎FOLLOW ME EVERYWHERE ➡ jh.live/discord ↔ jh.live/twitter ↔ jh.live/linkedin ↔ jh.live/instagram ↔ jh.live/tiktok
💥 SEND ME MALWARE ➡ jh.live/malware
@GuyThompsonFWTX 7 ай бұрын
First off, thanks for showing this John. You were actually one of the first people I started watching in my IT career years ago when you were focused primarily on Python videos. Like you, I have since grown in my career and am now working in DFIR and also enrolled in SANS Incident Response Graduate Certificate program. I perform individual host-based forensics, large-scale multi-host multi-server ransomware compromise investigations, and everything in between. I've considered starting a KZbin channel focused on DFIR and showing beginning to end investigations (acquiring evidence from physical machines, imaging, various log analysis, network analysis, host-based forensics, investigation methodologies, reporting, etc.). If this is something your audience would like, I would love a 'Like' and will begin putting together a series for viewers.
@rune004 7 ай бұрын
I would love to watch this if you ever get the time to make it 😊
@phillipwithrow3754 7 ай бұрын
I would be first in line to watch as I am just completing a four year degree in cybersecurity itself, getting the real world practice out there is invaluable.
@txlv 7 ай бұрын
ain't readin allat
@squidthon4031 7 ай бұрын
John, you’re way too good for this community! Every day I watch your videos and try to grasp everything you teach but it’s difficult to keep up with the plethora of information you are giving out 😂😂 we really do appreciate all your hard work, thanks for all the opportunities you’ve given us to grow and learn!
@ting3695 7 ай бұрын
Just finished my first week of my first job in cyber as a Security Analyst. Thank you for everything you do John, thanks to you, this knowledge is readily available in a digestible way.
@JaviSerna 7 ай бұрын
Thanks for sharing and let us learn . Very well explained and clear.
@TalkingSasquach 7 ай бұрын
I'm just over here taking notes on how to KZbin. Love your channel!
@node- 7 ай бұрын
awesome to see some incident response videos hoping to see some more of these
@grady.debonair 7 ай бұрын
Excellent video as always! Loving the blue team content on the channel!
@anubisjishin 7 ай бұрын
Is amazing, thanks for sharing. What I don't understand is that you need to have Wireshark all the time monitoring the traffic to get that info? Or how you make those pcaps in a real environment?
@charlesmarseille123 7 ай бұрын
@johnhammond my man! thats the right energy and natural tone (so rare nowadays with all the hypee youtubers)!! have you ever played with polarizing filters for the reflections in your glasses? you would be amazed!
@Daniel-jb3rt 5 ай бұрын
Thanks John. We need more of this or malware analysis videos
@Unrealdruiddd 7 ай бұрын
Don't know if you have heard but Toronto Public Library was hacked so bad that even their printers/scanners can't be used. It seems like entire back end was destroyed/deleted.
@DecentralizedPlanet 7 ай бұрын
Seriously? Do you have source I could check out by any chance
@CyberWithSarfraz 7 ай бұрын
It was a really amazing video, we need more of these.
@Error_Mode1219 7 ай бұрын
big fan here from Ethiopia keep up the content🥰
@user-lw7oj1wo1x 7 ай бұрын
Here From Nepal!😊
@werth7113 7 ай бұрын
Here from Poland
@PrinceJohn84 7 ай бұрын
The number of environments I come across where literally no security baselining has been carried out is simply staggering.
@xeonzero1 7 ай бұрын
Thank you so much. This is great.
@Angelinajolieshorts 7 ай бұрын
I love your teaching methods 😍😍
@milentiusgaming 7 ай бұрын
this win11 taskbar is a perfect example of why it was put on the left in the first place :P
@nayottientong4850 7 ай бұрын
thank, awesome!
@parker4878 7 ай бұрын
Great video, well made and dictated!
@RandomGeometryDashStuff 7 ай бұрын
05:59 why does office macro have capability to do stuff outside document like spawn process, read and write files?
@Angelinajolieshorts 7 ай бұрын
Big fan of you boss❤❤
@husamxxx-fv8pi 7 ай бұрын
Hello John Hammond, I want to ask you if the Windows copies on the Windowstan website are safe or if they contain viruses.
@BurkenProductions 7 ай бұрын
Well not many companies do pcap to workstations. Too much data.
@gabe_plane 7 ай бұрын
so where is the link to poisoning the well? i dont see it via browser
@CZghost 7 ай бұрын
Nmap is among the stuff? Might give it a shot.
@50PullUps 7 ай бұрын
Pause to shift gears 15:33
@kevinapana-korley5442 7 ай бұрын
There's no link to the lab in the description currently.
@_JohnHammond 7 ай бұрын
Sorry, fixed! jh.live/logs-ir
@davidsussens4478 7 ай бұрын
As noted by a couple of commenters below, there does not seem to be a link to the labs in the description...
@davidsussens4478 7 ай бұрын
Thanks for adding the link.
@BenGillam 7 ай бұрын
Is it normal for a network to be capturing wireshark during normal use? Or is this supposed to have been run per hack but before cleanup?
@chuckhayes8320 7 ай бұрын
Decent firewalls do this (but only for traffic hitting the gateway). LAN traffic would be more difficult to capture. You can set up a monitoring port on a network switch so you can monitor all traffic going to and from selected ports on that switch, but quickly bandwidth gets eaten up by the amount of data so you'd need quite a chunky NIC. 48x1Gb for client machines, and then 1x50Gb for your server, sort of thing. Dark trace takes this further with more advanced machine learning software for threat detection.
@BenGillam 7 ай бұрын
@@chuckhayes8320 thanks that was kind of my thinking that’s a lot of data to be capturing seems something only big orgs would have budget for?
@user-lf5tu6oc6h 7 ай бұрын
Do you have courses?
@glass8289 7 ай бұрын
Hello John, Thanks for the video. There is no link in description.
@_JohnHammond 7 ай бұрын
Apologies, I've added it now.
@glass8289 7 ай бұрын
@@_JohnHammond That's quick. Really appreciate for sharing your knowledge. Thank you very much.
@frighteningcat 7 ай бұрын
15:33 poor John forgot to cut it out
@mthia 7 ай бұрын
17:27 too
@dano612s 7 ай бұрын
why not open the CSV in excel or something?
@mav3783 7 ай бұрын
Hi John why did you use a vm for this ?
@brantray6774 7 ай бұрын
How often are the logs actually available and not wiped?
@MrPyrox69 7 ай бұрын
That is why you have them on a Syslog Server that is not connected to the Domain...
@tecsmith_info 7 ай бұрын
*Nostalgia intensifies*
@Mezzosd 7 ай бұрын
why don't you make a video about Sysmon???
@siamahmed8287 7 ай бұрын
Where can I find more Incident Response labs? Free labs
@adrianocaporro639 7 ай бұрын
What are the differences between Antisyphon training vs try hack me? Would they complement each other?
@user-ayush818 6 ай бұрын
Of course, only if you're really interested in cyber security
@adrianocaporro639 6 ай бұрын
Definitely am ;), But if someone would chose one in between these two, which one would be best?
@bubatz9815 7 ай бұрын
can you make a tutorial how to get on onion center the search engine?? please
@imahsansyed 6 ай бұрын
Hey, I know that its hard to reply for comments but I have a question I have my google ID and password but I couldn't sign in into my account I have no 2fa enabled, no recovery phone or email in my account When I try to login it says, to login from device I logged in earlier (not available),sign in from same network(which isn't also available) What to do
@Safvanviber-xm3pn 7 ай бұрын
Love from india ❤
@gabe_plane 7 ай бұрын
yeah no link in description
@davidsussens4478 7 ай бұрын
I thought I was the only one, but yeah, no link. Thought I might have fallen on my head...
@_JohnHammond 7 ай бұрын
Sorry, added now! jh.live/logs-ir
@albaniaiptv8335 7 ай бұрын
how gta 6 got hacked , can you explain ?
@NotTheRealRyan 7 ай бұрын
The day will come when someone asks the AI to fix our security problems, and it eliminates all the humans....
@dakoderii4221 7 ай бұрын
There is a lot of data on the web from the WEF and UN, along with their brainwashed useful idiots, that states humans are a plague on the Earth. The first group the AI will wipe out is white people since that's all you hear about on MSM. White people has also been redefined to mean anyone who disagrees with the agenda. It will also see that men are bad and oppressing women but humans don't know what a women is, yet they know that men can be women too. The AI will be confused by our own stupidity. Ironically, it might be what keeps us from getting exterminated. 🤔
@BearMeat4Dinner 7 ай бұрын
They got it hacked cause someone had there head stuck up there hanus holes…
@RhinecnthusAssasi 7 ай бұрын
Make An rev eng of an ITP crypto scam app please. :-)
@abd-animation-22 7 ай бұрын
I don't understand anything here
@patslee1394 7 ай бұрын
👍
@ramnarayan9882 7 ай бұрын
hi
@dvn8ter 7 ай бұрын
⭐️⭐️⭐️⭐️⭐️
@thebeastsclips 7 ай бұрын
I wonder which company got hacked😂
@physx_naraka 7 ай бұрын
its obviously in the video.
@dakoderii4221 7 ай бұрын
According to the WEF, hacking now consists of "misinformation". If you post a comment saying "men can NOT get pregnant", you have just "hacked" something and are now an international, cyber criminal terrorist. It's in their new 16 page report. They say it's for your "safety".
@bober1019 7 ай бұрын
wtf is this click bait. be transparent in your title: this is not real
@just_silent3990 7 ай бұрын
comment
@tsgetty 7 ай бұрын
DISH, duh. Lulz
@Seadragxn 7 ай бұрын
First, 22 seconds ago?
@margarita8442 7 ай бұрын
script kiddie stuff
@DJG37S 7 ай бұрын
Lmao!!!! Well played on the word.exe. The word.exe for famous because there was a known counter strike player name forsaken who got caught cheating using word.exe.
@000TheRebel000 7 ай бұрын
HACKERATO LEDGER