Disrupt Attacks at the Endpoint with Attivo Networks – Joseph Salazar – PSW #674 | SC Media
Deception

Disrupt Attacks at the Endpoint with Attivo Networks – Joseph Salazar – PSW #674

November 13, 2020

 

 

Sponsored By

 

sponsor
Visit https://securityweekly.com/attivonetworks for more information!

 

Attackers have repeatedly demonstrated that they can evade perimeter defenses to compromise a system inside the network. Once they get in, they must break out from that beachhead, conduct discovery, credential theft, lateral movement, privilege escalation, and data collection activities. Suppose they go looking for locally stored files or network shares and instead see nothing of value? What if they query Active Directory and don’t get real credentials in the responses? What if they look for ports or services to attack, and instead, their connections get redirected to systems with no value? If they can’t see and access data or accounts that move them forward, they can’t attack anything of value. Learn how deception and concealment technology can deny, detect, and disrupt attackers when they first enter the network.

This segment is sponsored by Attivo Networks.

Visit https://securityweekly.com/attivonetworks to learn more about them! Visit https://www.securityweekly.com/psw for all the latest episodes!

Full Episode Show Notes

Disrupt Attacks at the Endpoint with Attivo Networks

Calculating ROI for Attivo Deception and Concealment Technology: https://attivonetworks.com/documentation/Attivo_Networks-Calculating_ROI_for_Deception_Concelament.pdf

Using a Commercial Deception Solution to Improve MITRE ATT&CK Test Results for Endpoint Security: https://go.attivonetworks.com/Improving-MITRE-test-results-endpoint-security.html

Attivo Networks MITRE Shield Mapping: https://go.attivonetworks.com/WC-MITRE-Shield-Mapping-whitepaper.html

Hosts

[caption id="attachment_210" align="alignleft" width="120"]Jeff Man Jeff Man - Sr. InfoSec Consultant[/caption] [caption id="attachment_210" align="alignleft" width="120"]Larry Pesce Larry Pesce - Senior Managing Consultant and Director of Research[/caption] [caption id="attachment_210" align="alignleft" width="120"]Lee Neely Lee Neely - Senior Cyber Analyst[/caption] [caption id="attachment_210" align="alignleft" width="120"]Paul Asadoorian Paul Asadoorian - Founder & CTO[/caption] [caption id="attachment_210" align="alignleft" width="120"]Tyler Robinson Tyler Robinson - Managing Director of Network Operations[/caption]

Guests

[caption id="attachment_210" align="alignleft" width="120"]Joseph Salazar Joseph Salazar - Technical Deception Engineer[/caption]

Announcements

  • Security Weekly, in partnership with CyberRisk Alliance, is excited to present Security Weekly Unlocked on December 10, 2020. This 1 day virtual event wraps up with the 15th anniversary edition of Paul’s Security Weekly live on Youtube! Visit https://securityweekly.com/unlocked to view the agenda and register for free!

[audio src="http://traffic.libsyn.com/sw-all/PSW_674-_Joseph_Salazar-0_converted.mp3"]

prestitial ad