Tradecraft Security WeeklySubscribe
Incident Response, SIEM

Live Response with Google Rapid Response (Blue Team Edition) – Tradecraft Security Weekly #10

How do you perform incident response on systems in your environment at scale or when the system that needs to be analyzed is in a geographically different location than your analysts? What if you need to do this and have no real budget to work with to use commercial tools? The answer is Google Rapid Response (Google GRR). In this Blue Team Edition Episode of Tradecraft Security Weekly we (@0xderuke & @dafthack) demonstrate retrieving a potentially weaponized spreadsheet from a remote computer system using GRR. LINKS

[audio src="http://traffic.libsyn.com/tswaudio/Live_Response_with_Google_Rapid_Response_Blue_Team_Edition_-_Tradecraft_Security_Weekly_10_converted.mp3"]

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.