DFSP # 327 - Persistence Part 1

DFSP # 327 - Persistence Part 1

One of the first things attackers attempt to accomplish on a compromised system is to establish persistence. Unless you are dealing with a denial of service attack, most other attacker goals are centered on maintaining the degree of control over a compromise system in order to use system resources for things like cryptomining or to maintain a foothold to further an attack strategy. This week I am going to talk about a fast triage methodology for persistence, which is one of the first triage strategies I normally recommend for a compromise assessment. Because I am focusing on a fast triage methodology I am going to focus on the artifacts most examiners will have readily at hand and how to make the most of them during the initial pass.

Tämä jakso on lisätty Podme-palveluun avoimen RSS-syötteen kautta eikä se ole Podmen omaa tuotantoa. Siksi jakso saattaa sisältää mainontaa.

Jaksot(498)

Suosittua kategoriassa Tiede

rss-mita-tulisi-tietaa
tiedekulma-podcast
filocast-filosofian-perusteet
docemilia
rss-ammamafia
rss-poliisin-mieli
rss-tiedetta-vai-tarinaa
utelias-mieli
hippokrateen-vastaanotolla
rss-bios-podcast
rss-duodecim-lehti
rss-lihavuudesta-podcast