PowerShell 2022: State of the Art / Hack / Infection

Channel:
United States SANS Cyber Defense
Subscribers:
23,600
Published on ● Video Link: https://www.youtube.com/watch?v=hDbqXWGifls


Duration: 1:41:59
5,456 views
150

Why has PowerShell become so popular for ransomware, hacking tools, cloud computing, and security automation? Isn't PowerShell just another command shell? No! Attend this talk by SANS Faculty Fellow Jason Fossen to see what PowerShell really is, how it's being used (and abused) today, and future trends. If you're unfamiliar with PowerShell or you're taking a SANS course with PowerShell labs, like SEC401 or SEC504, then this presentation is especially for you. You can get the latest version of PowerShell for macOS, Linux or Windows from https://github.com/powershell/ for free.

About SEC505
Want to block Windows attacks, thwart the lateral movement of hackers inside your LAN, and prevent administrative credential theft? And you want to have fun learning PowerShell scripting at the same time? Then SEC505 is the course for you! Learn more at sans.org/sec505

About the Speaker/Course Author:
Jason Fossen is the president and chief consultant of Enclave Consulting and a SANS Faculty Fellow Instructor. He has worked as an independent consultant supporting Microsoft environments for over 20 years and has trained thousands of Windows network administrators and security personnel in more than a dozen countries around the world. Jason is the author of SEC505: Securing Windows and PowerShell Automation, a course that prepares administrators for the GCWN certification exam. Jason is also the course author for day five of SEC401 (the Windows day). He is the top instructor to help security professionals understand Microsoft Windows at a deeper level.



Other Videos By SANS Cyber Defense


2022-04-22Using Machine Learning to Reduce the Alert Fatigue
2022-04-04Join us for the Free SANS OSINT Summit 2022!
2022-03-18Setting Up and Managing Python Virtual Environments
2022-03-17Lifting the Fog: Exploring Maritime OSINT
2022-03-11Visualizing TensorFlow Models: Part II
2022-03-04SOC Alert Tuning and False Positive Reduction: Setting Yourself Up for Success
2022-03-03Defenders: What to do NOW if expecting nation state attackers
2022-02-18Visualizing TensorFlow Models: Part I
2022-02-04Visualizing TensorFlow Models: Part 1
2022-01-21Visualizing How CNNs See Images
2022-01-21PowerShell 2022: State of the Art / Hack / Infection
2022-01-14All-Around Defenders: New Year, New Start
2022-01-07Applying DS/ML to Forensics and Incident Response: An Interview with Jess Garcia
2021-12-13What do you need to know about the log4j (Log4Shell) vulnerability?
2021-11-22Get to Know SANS Instructor and SEC586 Course Author Josh Johnson
2021-11-22Bringing the Sexy Back to Blue Team, with Eric Conrad and Seth Misener
2021-11-17Modern Authentication for the Security Admin
2021-11-15DeTT&CT(ing) Kubernetes ATT&CK(s) with Audit Logs
2021-11-13Ransomware Preparation, Containment and Recovery Strategies
2021-11-12Building on the Foundations of OSINT with SEC587: Advanced Open-Source Intelligence
2021-11-12AI & ML in the Modern SOC


Tags:
sans institute
blue team
blue team operations