2015-028: using log analytics to discover Windows malware artifacts
An episode of the BrakeSec Education Podcast podcast, hosted by Bryan Brake, Amanda Berlin, and Brian Boettcher, titled "2015-028: using log analytics to discover Windows malware artifacts" was published on June 29, 2015 and runs 44 minutes.
June 29, 2015 ·44m · BrakeSec Education Podcast
Episode Description
In this podcast, you'll learn about:
Log analytics software that can be used to parse system logs for naaty malware
Detecting Malware artifacts
learn about windows directory locations
looking for indicators like packing, changed hashes, etc
Tips for capturing malware using tools like RoboCopy
Learn about what code caves are and how malware hides inside them (http://www.codeproject.com/Articles/20240/The-Beginners-Guide-to-Codecaves)
SANS DFIR poster - https://www.sans.org/security-resources/posters/windows-forensics-evidence-of-75
Similar Episodes
No similar episodes found.
Similar Podcasts
No similar podcasts found.