Beyond ‘Check The Box’ - Powering Intrusion Investigations

Beyond ‘Check The Box’ - Powering Intrusion Investigations

Black Hat via YouTube Direct link

Systems

12 of 28
Previous
Next

12 of 28

Systems

Class Central Classrooms beta

YouTube videos curated by Class Central.

Classroom Contents

Beyond ‘Check The Box’ - Powering Intrusion Investigations

Automatically move to the next video in the Classroom when playback concludes
  1. 1 Introduction
  2. 2 Capabilities
  3. 3 Use Cases
  4. 4 Who I am
  5. 5 Context on investigations
  6. 6 Selfidentified
  7. 7 Questions
  8. 8 Example
  9. 9 High Level Questions
  10. 10 Data Points
  11. 11 DHCP Logging
  12. 12 Systems
  13. 13 Bottom Line
  14. 14 Life Cycle
  15. 15 Possible explanations
  16. 16 Kerberos service tickets
  17. 17 Commercial Sim example
  18. 18 Windows 2003 vs Windows 2008
  19. 19 Logging Authentication Events
  20. 20 Events to Log
  21. 21 Net Float
  22. 22 Tracking DNS Resolutions
  23. 23 The Simple Case
  24. 24 Logging DNS
  25. 25 Identifying indicators of compromise
  26. 26 Network indicators of compromise
  27. 27 Summary
  28. 28 QA

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Sign up for free
Someone learning on their laptop while sitting on the floor.