ATTACKER ANTICS - Ruxcon
RUXCON 2017
ATTACKER ANTICS
ILLUSTRATIONS OF INGENUITY
Presented by Bart Inglot & Byrne Ghavalas
1 Copyright ? FireEye, Inc. All rights reserved.
Byrne Ghavalas
? Principal Consultant at Mandiant ? Experience includes IR / Forensics, Security Research
and Pen Testing ? Enjoy climbing, sailing, walking and am partial to good
wine and coffee ? Twitter: @bghavalas
2 Copyright ? FireEye, Inc. All rights reserved.
Bart Inglot
? Principal Consultant at Mandiant ? Incident Responder ? Rock Climber ? Globetrotter
? 1 year in Brazil ? 8 years in the UK ? recently married and relocated to Singapore
? Twitter: @bart.inglot
3 Copyright ? FireEye, Inc. All rights reserved.
Today's Tales
1. AV Server Gone Bad 2. Stealing Secrets From An Air-Gapped Network 3. A Backdoor That Uses DNS for C2 4. Hidden Comment That Can Haunt You 5. A Little Known Persistence Technique 6. Securing Corporate Email is Tricky 7. Hiding in Plain Sight 8. Rewriting Import Table 9. Dastardly Diabolical Evil (aka DDE)
4 Copyright ? FireEye, Inc. All rights reserved.
AV SERVER GONE BAD
Cobalt Strike, PowerShell & ePO
5 Copyright ? FireEye, Inc. All rights reserved.
................
................
In order to avoid copyright disputes, this page is only a partial summary.
To fulfill the demand for quickly locating and searching documents.
It is intelligent file search solution for home and business.
Related download
- use case threat detection for windows process creation events
- new malware samples identified in point of sale
- cynet threat report
- attacker antics x33fcon
- decode base64 string to pdf file
- emotet a technical analysis of the destructive
- attackers arsenal cybereason
- attacker antics ruxcon
- evasive methods against healthcare
- security operations obfuscation reflective injection and
Related searches
- math antics integer operations
- math antics worksheets
- math antics worksheets answers
- math antics multiplying integers
- math antics adding integers
- youtube math antics integers
- math antics probability video
- 1 img src http attacker 9278 log php
- the img src http attacker 9134 log php
- the img src http attacker 9549 log php
- the img src http attacker 9272 log php
- facebook img src http attacker 9286 log php