Loading…
This event has ended. View the official site or create your own event → Check it out
This event has ended. Create your own
Welcome to BSidesLV 2016, our 8th annual BSides in beautiful Las Vegas, Nevada!
View analytic
Wednesday, August 3 • 10:45 - 11:30
Powershell-Fu – Hunting on the Endpoint

Sign up or log in to save this to your schedule and see who's attending!

Hunting is the art of searching for badness and unauthorized activity on our own systems or network.  By knowing what is normal in our networks and what is possible of adversaries, the hunter can identify malware, signs of unauthorized activity, and indicators of compromise lurking within. In this session, we will explore how to hunt for malware and compromises on windows endpoints using built-in Powershell commands and scripts.  We will explore how to validate what’s running on our systems and identify some of the tell-tale signs that you’ve been pwned. The failure of automated prevention and detection coupled with a disappearing perimeter means hunting will become an increasingly important skill among defenders. The skills demonstrated will be useful on your own local system or remotely against hundreds or even thousands of systems.


Speakers
avatar for Chris Gerritz

Chris Gerritz

Co-Founder and CEO, Infocyte
Chris is co-founder of Infocyte, a malware and threat hunting product developer. Chris is a pioneer in defensive cyberspace operations having helped establish and lead the U.S. Air Force's Enterprise Hunt Team.  | | Prior to co-founding Infocyte, Chris served as the Air Force Computer Emergency Response Team (AFCERT)'s first Chief of Counter-Cyber Operations. In this role, he led a team of 28 operators tasked with finding, tracking, and... Read More →


Wednesday August 3, 2016 10:45 - 11:30
Breaking Ground Florentine A