/// Reference Document for this Webcast:
www.activecountermeasures.com/wp-content/uploads/2024/01/Top_Ten_Network_Tools_and_Techniques.pdf
Chris and Bill are seasoned networking adventurers with years of expertise, fearlessly exploring the realms of connectivity and safeguarding digital domains through their mastery in networking security.
In this webcast, William Stearns and Chris Brenton will go through their top 10 security tools and techniques for decoding packets and working with network streams. The focus will be on open-source tools and scripts that anyone can apply to their own environment.
Join our Threat Hunter Community Discord Server to join in on the conversation during and after the webcast: discord.gg/threathunter
///Active Countermeasures Socials
Twitter: ActiveCmeasures
LinkedIn: www.linkedin.com/company/active-countermeasures/
Discord: discord.gg/threathunter
///Our Threat Hunting Tool ~ AC-Hunter (Formally AI-Hunter)
Features - www.activecountermeasures.com/ac-hunter-features/
Interactive Demo Space - www.activecountermeasures.com/live-demo/
///Active Countermeasures Open-Source Tools
www.activecountermeasures.com/free-tools/
Educational Threat Hunting Content
FREE 6-Hour Threat Hunt Training: www.activecountermeasures.com/hunt-training/
Active Countermeasures Blog: www.activecountermeasures.com/blog/
Active Countermeasures KZread: kzread.info
Learn Threat Hunting Skills from Antisyphon Training
Entry-Level (Pay-What-You-Can): www.antisyphontraining.com/pay-what-you-can/
Advanced: www.antisyphontraining.com/advanced-network-threat-hunting-w-chris-brenton/
Active Countermeasures Shirts
spearphish-general-store.myshopify.com/collections/active-countermeasures
Our Tribe
Black Hills Infosec: www.blackhillsinfosec.com/
Wld West Hackin' Fest: wildwesthackinfest.com/
Antisyphon Training: www.antisyphontraining.com/
Index / Links:
00:39 - Smart TTY
sysprogs.com/SmarTTY/
Dependency: Visual Studio Community Edition
visualgdb.com/vscommunity
04:39 - ssh prep
github.com/william-stearns/sshprep
kzread.info/dash/bejne/aGac0tVpiL3Rfps.html
08:44 - Print tshark fields
15:44 - Screen for Long-Running Commands
www.stearns.org/doc/screen-for-detachable-sessions.html
20:17 - Payload Simulator
29:25 - gkrellm for System Status
www.stearns.org/doc/network-monitoring.current.html
Other tools for visibility:
www.activecountermeasures.com/peering-inside/
kzread.info/dash/bejne/X3ua06eCYdyyd7A.html
32:33 - Count Connects Per Hour in pcaps and Zeek Logs
random-class.s3.amazonaws.com/beacon-tshark
random-class.s3.amazonaws.com/beacon-data
39:50 - rsync File Mirroring
www.stearns.org/doc/rsync-quickstart.txt
44:46 - Print Packet Payloads with tshark
52:25 - Filtering with BPF
www.activecountermeasures.com/?s=BPF
www.activecountermeasures.com/filtering-out-high-volume-traffic/