Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

YouTube

Analyzing Malware Attacks Using Sysmon - A Practical Guide to Event Logging and Investigation

Cyber Mentor via YouTube

Start learning Write review
Boot.dev Ad

The Most Addictive Python and SQL Courses

Learn More → Coursera Ad

Get Coursera Plus for 40% off

Learn More →

Overview

Coursera Flash Sale
40% Off Coursera Plus for 3 Months!
Grab it
Learn how to leverage Sysmon for advanced endpoint event logging and security analysis through a hands-on 41-minute video demonstration. Master the installation process of Sysmon and understand crucial event IDs for tracking malicious behavior. Follow along with a practical attack simulation using Discord as a command and control channel, where malware execution and persistence mechanisms are implemented. Explore the investigative process of analyzing generated events to reconstruct the attack chain, enhancing detection and response capabilities for better defensive security measures.

Syllabus

Introduction -
Sysmon Event IDs Overview -
Sponsor B-Roll -
Sysmon Installation -
Generating Payload -
Delivering the Payload via Discord -
Executing the Payload -
Post Compromise Attacks -
Analyzing the Attack with Sysmon -
Conclusion -

Taught by

The Cyber Mentor

Reviews

Start your review of Analyzing Malware Attacks Using Sysmon - A Practical Guide to Event Logging and Investigation

Start learning

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Sign up for free
Someone learning on their laptop while sitting on the floor.