Using Windows Diagnostics for System Compromise
Offered By: YouTube
Course Description
Overview
Learn to leverage Windows diagnostics for detecting system compromises in this 35-minute conference talk from Derbycon 2015. Explore a novel technique that complements existing methods like VBA macros. Discover the potential of PowerShell 2.0 in RMM and Microsoft Code Signing. Gain insights into Windows Diagnostics output and the TerraDoe tool. Understand how to disable TerraDoe and explore future developments in this field. Acquire valuable references for further study on system compromise detection techniques.
Syllabus
Introduction
What is this about
Why should you be here
This is a new technique
Not a perfect replacement
Current state of the art VBA macros
Whats another diagnostic tool
PowerShell 20 in RM
Microsoft Code Signing
PowerShell
Windows Diagnostics
Output
TerraDoe
Disable TerraDoe
Whats next
References
Thank you
Related Courses
Building Geospatial Apps on Postgres, PostGIS, & Citus at Large ScaleMicrosoft via YouTube Unlocking the Power of ML for Your JavaScript Applications with TensorFlow.js
TensorFlow via YouTube Managing the Reactive World with RxJava - Jake Wharton
ChariotSolutions via YouTube What's New in Grails 2.0
ChariotSolutions via YouTube Performance Analysis of Apache Spark and Presto in Cloud Environments
Databricks via YouTube