ATTACKER ANTICS - x33fcon

ATTACKER ANTICS

ILLUSTRATIONS OF INGENUITY

Tom Hall and Bart Inglot

2

Bart Inglot

Principal Consultant at Mandiant Incident Responder Rock Climber Globetrotter

From Poland but live in Singapore Spent 1 year in Brazil and 8 years in the UK Learning French... poor effort!

Twitter: @bartinglot

?2018 FireEye | Private & Confidential

3

Tom Hall

Senior Consultant at Mandiant Incident Responder Rugby League Player & Coach Rock Climber (Bart's better) From England and based in London

Twitter: @thall_sec

?2018 FireEye | Private & Confidential

4

Disclosure Statement

" Case studies and examples are drawn from our experiences and activities working for a variety of customers, and do not represent our work for any one customer or set of customers. In many cases, facts have been changed to obscure the identity of our customers and individuals " associated with our customers.

?2018 FireEye | Private & Confidential

5

Today's Tales

1. AV Server Gone Bad 2. Stealing Secrets From An Air-Gapped Network 3. A Backdoor That Uses DNS for C2 4. Hidden Comment That Can Haunt You 5. A Little Known Persistence Technique 6. Securing Corporate Email is Tricky 7. Hiding in Plain Sight 8. Rewriting Import Table 9. Dastardly Diabolical Evil (aka DDE)

?2018 FireEye | Private & Confidential

 ................
................

In order to avoid copyright disputes, this page is only a partial summary.

Google Online Preview   Download