A Blue Team's Perspective on Red Team Hack Tools

Описание к видео A Blue Team's Perspective on Red Team Hack Tools

Join us in the Black Hills InfoSec Discord server here:   / discord   to keep the security conversation going!

Learn defending the enterprise with Kent Ickler and Jordan Drysdale from Antisyphon
Training: https://www.antisyphontraining.com/de...

00:00 - Big Fish
00:28 - Question & Enhance
02:51 - Executive Summary
03:58 - Executive Problem Statement
08:48 - Red Team Tools are Red Team Tools
13:39 - Optics(3)
16:22 - SIGMA and SIGMAC
22:13 - Red Team Tool : Responder
25:35 - Red Team Tool : CrackMapExec
29:57 - Red Team Tool : DomainPasswordSpray
38:48 - Red Team Tool : Mimikatz
46:41 - Red Team Tool : BloodHound
50:59 - Blue Team Tool : Plumbhoud
58:38 - Final Thoughts

Description: Kent and Jordan are back to continue their journey to make the world a better place. This time around, they will be reviewing a series of tools commonly used on pentests to identify flaws in Active Directory and general network design and implementation.

You've probably heard of most of them, like BloodHound, ADExplorer, mimikatz..., wait, Mimikatz as a Blue Team? Yeah, it might be a bit of a stretch, but they'll get there. Even better, with an introduction to various adversarial simulation frameworks, you can start your own journey of constant improvement. Nmap, CrackMap, BingMaps, and Domain Password Spray. (Re: BingMaps -- just checking to see if you're actually reading these, at this point, our response rate records keep getting shattered, and we just want someone to call us out - the BingMaps API is really cool though).

In a world seemingly gone mad, come find some solace with these two as they share new discoveries, a tool drop from Kent (which will potentially change the BloodHound game), and more.

Slides for this webcast can be found here: https://www.blackhillsinfosec.com/wp-...

Black Hills Infosec Socials
Twitter:   / bhinfosecurity  
Mastodon: https://infosec.exchange/@blackhillsi...
LinkedIn:   / antisyphon-training  
Discord:   / discord  

Black Hills Infosec Shirts & Hoodies
https://spearphish-general-store.mysh...

Black Hills Infosec Services
Active SOC: https://www.blackhillsinfosec.com/ser...
Penetration Testing: https://www.blackhillsinfosec.com/ser...
Incident Response: https://www.blackhillsinfosec.com/ser...

Backdoors & Breaches - Incident Response Card Game
Backdoors & Breaches: https://www.backdoorsandbreaches.com/
Play B&B Online: https://play.backdoorsandbreaches.com/

Antisyphon Training
Pay What You Can: https://www.antisyphontraining.com/pa...
Live Training: https://www.antisyphontraining.com/co...
On Demand Training: https://www.antisyphontraining.com/on...

Educational Infosec Content
Black Hills Infosec Blogs: https://www.blackhillsinfosec.com/blog/
Wild West Hackin' Fest YouTube:    / wildwesthackinfest  
Active Countermeasures YouTube:    / activecountermeasures  
Antisyphon Training YouTube:    / antisyphontraining  

Join us at the annual information security conference in Deadwood, SD (in-person and virtually) — Wild West Hackin' Fest: https://wildwesthackinfest.com/

#bhis #infosec

Комментарии

Информация по комментариям в разработке