Paul's Security Weekly TV: Reverse Analyzing Attacks for Detection, Justin Henderson - Paul's Security Weekly #519

Paul's Security Weekly TV

2023
March
February
January

2022
December
November
October
September
August
July
June
May
April
March
February
January

2021
December
November
October
September
August
July
June
May
April
March
February
January

2020
December
November
October
September
August
July
June
May
April
March
February
January

2019
December
November
October
September
August
July
June
May
April
March
February
January

2018
December
November
October
September
August
July
June
May
April
March
February
January

2017
December
November
October
September
August
July
June
May
April
March
February
January

2016
December
November
October
September
August
July
June
May
April
March
February
January

2015
December
November
October
September
August
July
June
May
April
March
February
January

2014
December
November
October
September
August
July
June
May
April
March
February
January

2013
December
November
October
September
August
July
June

Categories

Now displaying: Page 1

Reverse Analyzing Attacks for Detection, Justin Henderson - Paul's Security Weekly #519 0

Jun 26, 2017

Learn how to use Windows Event Logs to catch attackers in your network, including domain admin group enumeration and mimikatz attacks! Justin Henderson (@SecurityMapper) categorizes these techniques as "reverse attack analysis for detection" and shows us how to do it in this technical segment! References to Mark Baggett's work on freq.py are made as well (https://isc.sans.edu/forums/diary/Detecting+Random+Finding+Algorithmically+chosen+DNS+names+DGA/19893/)

Full Show Notes: https://wiki.securityweekly.com/Episode519

Subscribe to YouTube Channel: https://www.youtube.com/channel/UCg--XBjJ50a9tUhTKXVPiqg

Security Weekly Website: http://securityweekly.com

Follow us on Twitter: @securityweekly

Download this Episode

0 Comments

Adding comments is not available at this time.

©Copyright Defensive Intuition, LLC 2015