Filipi Pires
Cyber Security Evangelist at senhasegura
The purpose of this presentation is to use python scripts to perform some tests of efficiency and detection in various endpoint solutions, during our demonstration we`ll show a defensive security analysis with an offensive mind performing an execution some python scripts responsible for downloading some malware in Lab environment. The first objective will be to simulate targeted attacks using a python script to obtain a panoramic view of the resilience presented by the solution, with regard to the efficiency in its detection by signatures, NGAV and Machine Learning, running this script, the idea is to download these artifacts directly on the victim's machine. The second objective is to run more than one python script with daily malware, made available by MalwaresBazaar upon request via API access, downloanding daily batches of malwares.
With the final product, the front responsible for the product will have an instrument capable of guiding a mitigation and / or correction process, as well as optimized improvement, based on the criticality of the risks.
Article`s reference:
[ Ссылка ] ( 2x Articles published | Exploitation with Shell Reverse and Infection with PowerShell using VBS File | Zusy Malware using MSI)
[ Ссылка ] ( 2x Articles published | Testing Creative Way Detection and Efficiency in Sophos Security Sensors | Outbreak Infection from Malware Bazaar, undetected by Sophos
[ Ссылка ] (Hunting the Hunters-Detection and Efficiency Testing of Endpoint Security Sensors)
[ Ссылка ] ( 2x Articles Published | Threat Hunting Labs Engines Problems in Cybereason AV | Infection with Ransomware Using Delay in Applying Policies)
[ Ссылка ] (Infection with Malware By Script Python NOT Detected by AV)
[ Ссылка ] (Infection by Outbreak Attack Malicious)
Similar presentations:
[ Ссылка ] (NahamCon's on RTV 2021 - Discovering C&C in Malicious PDFs)
[ Ссылка ] (GrayHat - Red Team Village - 2020- US) - Malware Analysis
[ Ссылка ] (GrayHat - Red Team Village - 2020 - US) - Pivoting Technique
[ Ссылка ] (BSIDES DFW - 2020 - US) - Malware Analysis
[ Ссылка ] (Hacktivity - Budapest 2020) - Dissecting Malware
[ Ссылка ] (D.C. Cybersecurity Professionals - 2020 - US) - Cyber Threat Hunting: Identify and Hunt Down Intruders
[ Ссылка ] (D.C. Cybersecurity Professionals - 2020 - US) - Dissecting PDF Files to Malware Analysis
[ Ссылка ] (HITB -2020 - Hack In The Box Security Conference - Europe) - Threat Hunting
Other talks at this conference 🚀🪐 [ Ссылка ]
—
0:00 Intro
0:24 Talk
