Sunday, June 28, 2015

2015-028: using log analtyics to discover Windows malware artifacts

In this podcast, you'll learn about:

Log analytics software that can be used to parse system logs for naaty malware

Detecting Malware artifacts

learn about windows directory locations

looking for indicators like packing, changed hashes, etc

Tips for capturing malware using tools like RoboCopy

Learn about what code caves are and how malware hides inside them (


SANS DFIR poster - 

Here is a new episode of Brakeing Down Security!

No comments: