Offensive Operating Against SysMon, Carlos Perez –

September 28, 2018

Carlos Perez delivers the Technical Segment on How to Operate Offensively Against Sysmon. He talks about how SysMon allows him to create rules, and track specific types of tradecraft, around process creation and process termination. He dives into network connection, driver loading, image loading, creation of remote threats, and more!

Full Show Notes: https://wiki.securityweekly.com/Episode577

Visit https://www.securityweekly.com/psw for all the latest episodes!

Full episode and show notes

Hosts

Paul Asadoorian

Founder at Security Weekly

0offset

https://securityweekly.com

Carlos Perez

Principal Consultant, Team Lead for Research at TrustedSec

https://www.trustedsec.com/

Jason Wood

Senior Researcher at CrowdStrike

Joff Thyer

Security Analyst at Black Hills Information Security

https://www.blackhillsinfosec.com/team/joff-thyer/

Security awareness

TikTok, GitHub, CISA, More CISA, a Little More CISA, Netgear, & DoKwon – SWN #283

March 24, 2023

This week Dr. Doug talks: TikTok, Github, CISA and More CISA, Netgear, Do Kwon and More on this episode of the Security Weekly News.

Incident response

AI Hires Humans to Solve Captcha, Amazing Drones, & Buzzword Bingo 2023 Edition – ESW #310

March 23, 2023

This week in the Enterprise News: Dope Security nabs $16M led by GV to build out secure web gateways designed to work on endpoints, not in the cloud. We take the mystery out of some recent funding. Microsoft 365's Copilot tries to do your job for you. Mapping failures with decision trees. An AI hires a human to solve a CAPCHA, because it needed hel...

Privacy

Bringing Transparency and Security to IoT with ioXt – Grace Burkard – ESW #310