YoVDO

WhyMI so Sexy - WMI Attacks, Real Time Defense and Advanced Forensic Analysis

Offered By: YouTube

Tags

Conference Talks Courses Cybersecurity Courses Incident Response Courses Forensic Analysis Courses

Course Description

Overview

Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only!
Explore Windows Management Instrumentation (WMI) attacks, real-time defense strategies, and advanced forensic analysis techniques in this comprehensive conference talk from BSidesLV 2015. Delve into the intricacies of WhyMI, PowerShell query language, and eventing. Examine potential attack vectors, providers, and PowerShell eggs. Gain insights into APT29 techniques and learn advanced forensic analysis methods, including reverse engineering WMI. Discover practical applications through demonstrations of WMI tools and real-time WMI monitoring. Enhance your understanding of WMI security implications and forensic parsing techniques to better protect and analyze Windows systems.

Syllabus

Introduction
WhyMI
PowerShell
Query Language
Eventing
Possible Attacks
Providers
PowerShell Eggs
APT29 Im They
Advanced Forensic Analysis
Reverse Engineering
WMI
Whitepaper
Forensic parsers
Demo
WMI Tool
WMI in Real Time


Related Courses

Building Geospatial Apps on Postgres, PostGIS, & Citus at Large Scale
Microsoft via YouTube Unlocking the Power of ML for Your JavaScript Applications with TensorFlow.js
TensorFlow via YouTube Managing the Reactive World with RxJava - Jake Wharton
ChariotSolutions via YouTube What's New in Grails 2.0
ChariotSolutions via YouTube Performance Analysis of Apache Spark and Presto in Cloud Environments
Databricks via YouTube