Hunting and Scoping A Ransomware Attack

preview_player
Показать описание
Encrypting all your files is a ransomware actors' final objective. But when the frantic helpdesk calls start coming in, can you quickly identify all impacted devices? Can you determine if data exfil and extortion are part of the attack? Can you tell if they destroyed your backups? This talk will cover common ransomware gang "hands on keyboard" techniques for stealing your data, disabling defenses, and making your data and devices resistant to recovery. Participants will take away hunt logic which can be employed right away for early detection and rapidly scoping a ransomware compromise.

#ThreatHuntingSummit #Ransomware #RansomwareAttack
  1. SANS Digital Forensics and Incident Response
  2. sans threat hunting summit
  3. sans threat hunting and incident response summit
  4. threat hunting summit
  5. threat hunting and incident response summit
  6. Andrew Skatoff
Рекомендации по теме
Hunting and Scoping 0:30:14

Hunting and Scoping A Ransomware Attack

Ransomware, Threat Hunting 0:17:55

Ransomware, Threat Hunting and Threat Intelligence

Hunting Human Operated 0:27:14

Hunting Human Operated Ransomware Operators | 2020 Threat Hunting & Incident Response Summit

Detecting & Hunting 1:21:16

Detecting & Hunting Ransomware Operator Tools: It Is Easier Than You Think!

Learning to Combat 0:59:38

Learning to Combat Ransomware

SOC Response | 0:04:36

SOC Response | What Happens After A Ransomware Attack

Handling Ransomware Incidents: 0:57:53

Handling Ransomware Incidents: What YOU Need to Know!

Ransomware Attack Prevention: 0:27:40

Ransomware Attack Prevention: Proactive Strategies and Threat Intelligence

Hunting Ransomware- Jupyter 0:24:38

Hunting Ransomware- Jupyter Notebook, Sysmon, Windows Security Log

Cyber Threat Hunting: 0:01:30

Cyber Threat Hunting: Malware Hunting Overview | packtpub.com

Responding to Ransomware: 0:59:17

Responding to Ransomware: Containing the Threat and Preventing Encryption

Ransomware Forensics using 0:30:06

Ransomware Forensics using ProcDOT | BlackMatter Ransomware //Malware Analysis

Big Game Hunting: 0:46:27

Big Game Hunting: Major FIN threat joins the targeted ransomware-as-a-Service (RaaS) scene

Ransomware: Incident Response: 0:05:19

Ransomware: Incident Response: Detection and Containment // Ransomware Attack

Big Game Hunting: 0:56:25

Big Game Hunting: Ransomware Attacks

The Truth about 1:26:09

The Truth about Ransomware: Its not Complicated!

What is the 0:03:40

What is the FOR528: Ransomware for Incident Responders course all about?

TechEd 2013: License 1:18:10

TechEd 2013: License to Kill - Malware Hunting with the Sysinternals Tools - Mark Russinovich

Big Game Hunting: 0:44:15

Big Game Hunting: Ransomware Attacks

How to Investigate 0:05:35

How to Investigate a Ransomware Attack

Mining The Shadows 0:33:05

Mining The Shadows with ZoidbergStrike: A Scanner for Cobalt Strike

An Integrated Approach 1:05:05

An Integrated Approach to Malware Hunting | Why Attacks are Successful?

How to Effectively 0:30:18

How to Effectively Investigate a Human-Operated Ransomware Attack

HOW TO RESPOND 0:02:08

HOW TO RESPOND TO A RANSOMWARE ATTACK IN 9 STEPS

Комментарии
Автор

Excellent presentation, TTPs were explained in a simple way..👌

GUYWHITALL
Автор

Thank you fo this very interesting threat hunting episode

haythemlaouini
welcome to shbcf.ru