Fileless Malware

Focused View

Aaron Rosenmund

1:40:45

88 View

Module 1 - Course Overview

1. Course Overview.mp4

01:31

Module 2 - What Is Fileless Malware

1. Introduction.mp4

00:28

2. What is Fileless Malware.mp4

05:05

Module 3 - How Does Fileless Malware Work

1. PowerShell.mp4

04:01

2. C Sharp Compilers.mp4

04:31

3. WMI.mp4

07:25

4. What if the Attacker is Not Worried About Persistence.mp4

03:12

5. How to Catch Malware.mp4

04:30

6. Cyberchef.mp4

05:29

Module 4 - Why Do Attackers Use These Techniques

1. Why Do Attackers Use These Techniques.mp4

01:52

2. Logging and Anomaly Detection.mp4

09:08

3. Which Tools to Look for.mp4

02:28

Module 5 - Defenses Against Fileless Malware - Employing Proper Logging

1. What Do We Need to Be Logging.mp4

05:52

2. Demo - Setting up Event and PowerShell Logging.mp4

15:09

3. Sysmon.mp4

03:54

4. Logmd.mp4

02:02

Module 6 - Defenses Against Fileless Malware - Utilizing Hunting Tools

1. Event Log Explorer.mp4

11:09

2. DeepBluCLI.mp4

02:58

3. Alternative Detection Tools.mp4

03:57

Module 7 - Conclusion

1. Wrap Up.mp4

06:04

Description

In this course, you’ll learn about fileless malware, why it is used by attackers and the different strategies that can be taken to defend against it.

What You'll Learn?

In this course, Hunting for Fileless Malware, Tyler Hudak and Aaron Rosenmund tackle what exactly fileless malware is, why it is used by attackers, and the different defensive strategies that can be taken to defend your organizations from it. Learn about different examples of fileless malware techniques, the use of native tools (PowerShell and WMI), and the types of defenses you can use. By the end of this course, you’ll have a solid understanding of the various types of fileless malware and how best to defend against it.

More details

User Reviews

Rating

average 0

Total votes0

Focused display

Cyber Security

Aaron Rosenmund

Instructor's Courses

Aaron M. Rosenmund is a cyber security operations subject matter expert, with a background in federal and business defensive and offensive cyber operations and system automation. Leveraging his administration and automation experience, Aaron actively contributes to multiple open and closed source security operation platform projects and continues to create tools and content to benefit the community. As an educator & cyber security researcher at Pluralsight, he is focused on advancing cyber security workforce and technologies for business and national enterprises alike. In support of the Air National Guard, he contributes those skills part time in various initiatives to defend the nation in cyberspace. Certifications: GIAC GCIA, GIAC GCED, CCNA Cyber Operations, Pentest+, CySa+, CASP www.AaronRosenmund.com @arosenmund "ironcat"

Pluralsight

View courses Pluralsight

Pluralsight, LLC is an American privately held online education company that offers a variety of video training courses for software developers, IT administrators, and creative professionals through its website. Founded in 2004 by Aaron Skonnard, Keith Brown, Fritz Onion, and Bill Williams, the company has its headquarters in Farmington, Utah. As of July 2018, it uses more than 1,400 subject-matter experts as authors, and offers more than 7,000 courses in its catalog. Since first moving its courses online in 2007, the company has expanded, developing a full enterprise platform, and adding skills assessment modules.