Breaking NBAD and UEBA Detection
Offered By: YouTube
Course Description
Overview
Explore techniques for circumventing Network Behavior Anomaly Detection (NBAD) and User and Entity Behavior Analytics (UEBA) in this 29-minute conference talk from BSides Tampa 2020. Delve into topics such as baselining, anomaly detection, data poisoning, and behavioral spoofing prevention. Learn about various tools and methods including pump and dump techniques, pocket dimensions, bridge networks, and UDP spraying. Gain insights on creating fake traffic, API curls, and baseline boiling. Conclude with an analysis of these techniques and discover remediation strategies to enhance network security.
Syllabus
Intro
LinkedIn Page
Pastebin script
Outline
Dr Dorothy Denning
Baselines
Tools
Anomalies
User Entity Behavioral Analysis
Poisoning Data
Preventing Behavioral Spoofing
Pump and Dump
Pocket Dimension
Bridge Network
UDP
Netcat
UDP Spray
Fake traffic
API curls
Baseline boiling
Analysis
How to remediate
Questions
Related Courses
Computer SecurityStanford University via Coursera Cryptography II
Stanford University via Coursera Malicious Software and its Underground Economy: Two Sides to Every Story
University of London International Programmes via Coursera Building an Information Risk Management Toolkit
University of Washington via Coursera Introduction to Cybersecurity
National Cybersecurity Institute at Excelsior College via Canvas Network