Want to level up your threat-hunting knowledge? Take our FREE, hands-on threat hunt training course: www.activecountermeasures.com...
0:00 - Before We Start
3:06 - Threat Simulation: Testing Threat Hunting Software
4:29 - OK, But Why?
6:11 - Approach
8:32 - Network Layout
9:11 - Setup
14:24 - Actual Testing
15:37 - Detecting DNS C2 Traffic
17:41 - DNS Live Demo
29:17 - What We Look For
30:08 - If Not Detected?
36:36 - Metasploit Framework
1:00:55 - More Information
1:01:45 - Questions From Discord Chat
1:16:44 - Peanut Butter & Jelly
Video Description: Since Threat Hunting is such a new discipline, it's not always clear what Threats a particular package can detect. In this webcast, Bill Stearns and Keith Chew will walk you through testing your Threat Hunting software to make sure it is working properly and can detect different types of unwanted traffic. This is a walkthrough of the process for detecting DNS beaconing and Metasploit. After this webcast, you should be all set to do testing on the other threat traffic types.
In preparation for this webcast, check out our Threat Simulation blog series here: www.activecountermeasures.com...
Active Countermeasures Socials
Twitter: / activecmeasures
LinkedIn: / active-countermeasures
Discord: / discord
Our Threat Hunting Tool ~ AC-Hunter (Formally AI-Hunter)
Features - www.activecountermeasures.com...
Interactive Demo Space - www.activecountermeasures.com...
Active Countermeasures Open-Source Tools
www.activecountermeasures.com...
Educational Threat Hunting Content
FREE 6-Hour Threat Hunt Training: www.activecountermeasures.com...
Active Countermeasures Blog: www.activecountermeasures.com...
Active Countermeasures KZread: / activecountermeasures
Learn Threat Hunting Skills from Antisyphon Training
Entry-Level (Pay-What-You-Can): www.antisyphontraining.com/pa...
Advanced: www.antisyphontraining.com/ad...
Active Countermeasures Shirts
spearphish-general-store.mysh...
Our Tribe
Black Hills Infosec: www.blackhillsinfosec.com/
Wild West Hackin' Fest: wildwesthackinfest.com/
Antisyphon Training: www.antisyphontraining.com/