Modern Domain Deception - The risk, issues and potentiality | SANS@MIC Talk

Channel:
United States SANS Institute
Subscribers:
64,000
Published on ● Video Link: https://www.youtube.com/watch?v=_opQlmsfwEo


Duration: 1:00:19
295 views
9

Nowadays most enterprises are built up using Microsoft Windows Active Directory, a specific environment that is based on trust. This specific architecture design is the most useless of the deception options available. So as Threat Hunter we need to find the unknown, but how do we hunt for evil if the infrastructure is based on trust and common Deception options are unavailable, or introduce more risk than mitigation?

The talk is an evaluation of the actual limitations, issues, and risks of common deception mechanisms and the potentiality if we change the mindset approaching the issue from a different angle.

Speaker Bio
Agostino Panico is an IT SEC enthusiast, always looking to learn more, and putting into practice what he learns. He has been enjoying IT since 1991 when he was 5 years old, with his first love: Commodore 64. Agostino has been pentesting professionally since 2007. He holds a Master Degree in Computer Science, and he is a candidate for a PhD in Incident Handling and Penetration Testing. Agostino is excited to be mentoring for SANS because it provides an opportunity develop a one-on-one relationship with the students as they learn the material and how it applies to their environment.



Other Videos By SANS Institute


2020-06-09Remote Forensic Investigations in the Context of COVID-19 | SANS@MIC Talk
2020-06-05Waiting for a cyber range exercise is not enough | SANS@MIC Talk
2020-06-03Case Study: Airbus
2020-06-02WinSCP: Yeah you know me! | SANS@MIC Talk
2020-05-28Prioritizing OT Security Efforts: The Five Tactical Things to Accomplish | SANS@MIC Talk
2020-05-28Introduction to Docker for security work | SANS@MIC Talk
2020-05-27Threat Hunting and the Rise of Targeted eCrime Intrusions | STAR Webcast
2020-05-21Moving Past Just Googling It: Harvesting and Using OSINT | SANS@MIC Talk
2020-05-20Find_Evil - Threat Hunting | SANS@MIC Talk
2020-05-18Tricking modern endpoint security products | SANS@MIC Talk
2020-05-18Modern Domain Deception - The risk, issues and potentiality | SANS@MIC Talk
2020-05-14Cloud Native Payloads: A Matryoshka Doll of Exploits | SANS@MIC Talk
2020-05-14Incident Response in ICS in times of Lockdown | SANS@MIC Talk
2020-05-13SANS – Your Source for Cybersecurity Training – Live Online
2020-05-12Coalfire penetration testers charged with criminal trespass | SANS@MIC Talk
2020-05-12Using the OSINT Mind-State for Better Online Investigations | SANS@MIC Talk
2020-05-11Discovering Vulnerabilities Using IDA Scripting - SANS Pen Test HackFest Summit 2019
2020-05-07The Hackers Apprentice | SANS@MIC Talk
2020-05-07Information Security Misconceptions 2020 | SANS@MIC Talk
2020-05-05Course Preview: Successful Infosec Consulting, Getting Clients Deep Dive | SANS@MIC Talk
2020-05-05Accessing Data in the Cloud | SANS@MIC Talk


Tags:
sans institute
information security
cyber security
cybersecurity
information security training
cybersecurity training
cyber security training