DFSP # 427 - MOF Balls

DFSP # 427 - MOF Balls

Windows management instrumentation, also known as WMI, is an App on Windows that allows a user to query all sorts of things about a system. Being native to Windows, it is an attractive target for a attackers to leverage. This week I'll break down the artifact from a DFIR point of a few and talk about how to detect its misuse.

Denne episoden er hentet fra en åpen RSS-feed og er ikke publisert av Podme. Den kan derfor inneholde annonser.

Episoder(498)

Populært innen Vitenskap

fastlegen
tingenes-tilstand
jss
forskningno
liberal-halvtime
rekommandert
sinnsyn
villmarksliv
dekodet-2
tomprat-med-gunnar-tjomlid
smart-forklart
rss-nysgjerrige-norge
fjellsportpodden
rss-kunstig-intelligens-med-elisabeth-maren-og-morten
nevropodden
rss-rekommandert
rss-paradigmepodden
rss-overskuddsliv
abels-tarn
rss-bondevennen