YoVDO

Investigating Windows Subsystem for Linux - WSL Endpoints

Offered By: BasisTech via YouTube

Tags

Open Source Digital Forensics Conference (OSDFCon) Courses Digital Forensics Courses Incident Response Courses Windows 10 Courses Lateral Movement Courses Windows Server 2019 Courses

Course Description

Overview

Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only!
Explore the forensic implications of Windows Subsystem for Linux (WSL) in this 23-minute conference talk from OSDFCon 2020. Delve into the architecture changes introduced with WSL 2 and their impact on digital forensics and incident response. Learn about the growing interest in WSL among organizations and industry professionals, as well as the increasing focus of adversaries and malware authors on this technology. Discover key forensic artifacts and investigative techniques for compromised WSL endpoints, covering 10 unique attacker techniques including execution, persistence, lateral movement, command and control, and exfiltration. Gain insights from speaker Asif Matadar, Director of Endpoint Detection & Response at Tanium, who brings extensive experience in incident response, endpoint forensics, and threat landscape analysis to high-profile clients worldwide.

Syllabus

Investigating Windows Subsystem for Linux (WSL) Endpoints, Asif Matadar, OSDFCon 2020


Taught by

BasisTech

Related Courses

Windows 10 Features for a Mobile Workforce: Identity Management and Data Access
Microsoft via edX Windows 10 pour l'entreprise
Microsoft Virtual Academy via OpenClassrooms Apprendre à coder pour les vrais débutants
Microsoft Virtual Academy via OpenClassrooms Windows 10 Features for a Mobile Workforce: Configuring Additional Resources
edX Windows Support Essentials: Installation
Microsoft via edX