Stealth persistence strategies | SANS@MIC Talk

Channel:
United States SANS Institute
Subscribers:
64,200
Published on ● Video Link: https://www.youtube.com/watch?v=yecohKHoh6g


Duration: 1:05:38
1,286 views
33

This talk will introduce some more interesting stealth techniques! We'll include fancy new techniques and techniques that have been around for a while, yet remain super-effective. Some examples we'll discuss:

-Application shimming
-COM object hijacking
-Office persistence
-AppCert, AppInit and Netsh helper DLLs

WARNING: We will do live demos, so get ready. We'll cover how they can be implemented, but also how they can be detected and possibly prevented

Speaker Bio
Erik Van Buggenhout is the lead author of SEC599 - Defeating Advanced Adversaries. In addition to SEC599, Erik teaches SEC560 - Network Penetration Testing & Ethical Hacking and SEC542 - Web Application Penetration Testing & Ethical Hacking. He has been involved with SANS since 2009, first as a Mentor, working his way to Community Instructor in 2012 and finally becoming a Certified Instructor in 2016.

Erik loves explaining deeply technical concepts by using war stories, adding a few funny anecdotes here and there. As a testimony of his technical expertise, he has obtained the GSE, GCIA, GNFA, GPEN, GWAPT, GCIH, and GSEC certifications.

In addition to his work with SANS, Erik is the co-founder of Belgian cyber security firm NVISO, which focuses on high-end cyber security services, specializing in government, defense and the financial sector. Together with his team of 20+ technical experts, Erik delivers a wide array of technical security services, including penetration testing, security monitoring & incident response.



Other Videos By SANS Institute


2020-04-10How Threats are Responding to COVID-19 | STAR Webcast
2020-04-09Take Back The Advantage - Cyber Deception for the Win | SANS@MIC Talk
2020-04-07Pen Testing ICS and Other Highly Restricted Environments | SANS@MIC Talk
2020-04-07Domain Password Auditing with the Cloud | SANS@MIC Talk
2020-04-07SANS Institute - Self Paced Online Training
2020-04-06ZOMG It's ZOOM! - Don't worry, it's safe. As long as you follow some rules. - SANS Webcast
2020-04-03What Every Pen Tester Needs to Know About ICS
2020-04-02Are You Certifiable? | SANS@MIC Talk
2020-04-01The Hackers Apprentice | SANS@MIC Talk
2020-03-31Pen Testing ICS and Other Highly Restricted Environments - SANS Pen Test HackFest Summit 2019
2020-03-31Stealth persistence strategies | SANS@MIC Talk
2020-03-27Attacking Serverless Servers: Reverse Engineering the AWS, Azure, and GCP Function Runtime
2020-03-25xHunt - An Anime Fan's Attack Campaign in the Middle East | STAR Webcast
2020-03-24I'm Sorry Dave, I Can't Do That: Practical Machine Learning for Information Security | SANS@MIC Talk
2020-03-24Building Your Foundation: Getting Started in Digital Forensics | SANS@MIC Talk
2020-03-24Real-Time OSINT: Investigating Events as They Happen | SANS OSINT Summit 2020
2020-03-24Securing Your Kids Online
2020-03-23How I Learned to Stop Worrying and Love TLS | SANS@MIC Talk
2020-03-18Preventing Email Phishing
2020-03-18Securely Working Remotely
2020-03-18Creating a Cyber Secure Home


Tags:
sans institute
information security
cyber security
cybersecurity
information security training
cybersecurity training
cyber security training
erik van buggenhout
sans@mic
stealth persistence strategies
stealth techniques