Summary: <br> <br> <br> <br> <br> <br> <br> <br> <br> <br> In this webcast, we will cover what we can do if we think there is a breach on our network. <br> <br> <br> <br> We will cover live forensics, cool PowerShell scripts, network, and event log analysis, cool IR spreadsheets, and checklists. <br> <br> <br> <br> We will also be covering the status of our ELK project for reviewing Event ID 3 from Sysmon. <br> <br> <br> <br> So, a lot… Yep… A crazy amount. <br> <br> <br> <br> Slides for this webcast can be found here: https://www.blackhillsinfosec.com/wp-content/uploads/2020/09/SLIDES_ThinkYoureCompromised.pdf<br> <br> <br> <br> <a href="https://www.youtube.com/watch?v=DuIXbz30mqk&t=0s" target="_blank" rel="noreferrer noopener">00:00</a> – Intro <br> <br> <br> <br> <a href="https://www.youtube.com/watch?v=DuIXbz30mqk&t=47s" target="_blank" rel="noreferrer noopener">00:47</a> – “Ok, But Why” <br> <br> <br> <br> <a href="https://www.youtube.com/watch?v=DuIXbz30mqk&t=137s" target="_blank" rel="noreferrer noopener">02:17</a> – Have It The Wrong Way <br> <br> <br> <br> <a href="https://www.youtube.com/watch?v=DuIXbz30mqk&t=275s" target="_blank" rel="noreferrer noopener">04:35</a> – Have It The Right Way <br> <br> <br> <br> <a href="https://www.youtube.com/watch?v=DuIXbz30mqk&t=418s" target="_blank" rel="noreferrer noopener">06:58</a> – Lego My Incident Response<br> <br> <br> <br> <a href="https://www.youtube.com/watch?v=DuIXbz30mqk&t=505s" target="_blank" rel="noreferrer noopener">08:25</a> – Monologging On Mute <br> <br> <br> <br> <a href="https://www.youtube.com/watch?v=DuIXbz30mqk&t=717s" target="_blank" rel="noreferrer noopener">11:57</a> – Wouldn’t Be Prudent <br> <br> <br> <br> <a href="https://www.youtube.com/watch?v=DuIXbz30mqk&t=869s" target="_blank" rel="noreferrer noopener">14:29</a> – “Better Than Bad, It’s Good”<br> <br> <br> <br> <a href="https://www.youtube.com/watch?v=DuIXbz30mqk&t=1293s" target="_blank" rel="noreferrer noopener">21:33</a> – A Van Full of Free Tools <br> <br> <br> <br> <a href="https://www.youtube.com/watch?v=DuIXbz30mqk&t=2650s" target="_blank" rel="noreferrer noopener">44:10</a> – CSI: Memory <br> <br> <br> <br> <a href="https://www.youtube.com/watch?v=DuIXbz30mqk&t=2701s" target="_blank" rel="noreferrer noopener">45:01</a> – We Got Cheat Sheets if You Want Some Cheat Sheets <br> <br> <br> <br> <a href="https://www.youtube.com/watch?v=DuIXbz30mqk&t=2840s" target="_blank" rel="noreferrer noopener">47:20</a> – Overlapping Venn Diagrams <br> <br> <br> <br> <a href="https://www.youtube.com/watch?v=DuIXbz30mqk&t=2986s" target="_blank" rel="noreferrer noopener">49:46</a> – Questions in the Wild <br> <br> <br> <br> <a href="https://www.youtube.com/watch?v=DuIXbz30mqk&t=3555s" target="_blank" rel="noreferrer noopener">59:15</a> – Sucking at Capitalism <br> <br> <br> <br> <br> <br> <br> <br> <br> <br> <br> <br> <br> <br> <br> <br> <br> <br> Want to level up your skills and learn more straight from John himself?You can check out his classes below!<br> <br> <br> <br> <a rel="noreferrer noopener" href="https://www.antisyphontraining."></a>
