2026-04-07 01-22-58_Clip_Clip-01

26:52 2 સ્પીકર 6 પ્રકરણો 563 સેગમેન્ટ્સ

પ્રકરણો

  1. 0:09

    There's a number of different terms and definitions that are very commonly used when we're talking about threat hunting, and it's important to know what those are. Now, if you're already familiar, if you're already in the cybersecurity indu…

  2. 5:12

    So for your more typical or generic APTs, they start out with APT and then a number. They can also use UNC, which stands for Uncategorized Group, or FIN or FIN to designate a threat actor group that's focused mainly on financial crimes. So …

  3. 10:00

    to show that there is potentially the presence of malicious activity. Now, just because there is an IOC found doesn't always mean that there is a confirmed compromise or a confirmed malicious activity on a system. It is just an indicator th…

  4. 15:00

    He created the Pyramid of Pain while he was working at Mandiant. And again, the point of this is to show two different things. One, the difficulty in obtaining different indicators of compromise. Also, if you're able to detect specific type…

  5. 20:00

    more difficult for the attacker to evade the detection or to kind of get around the mitigation, excuse me. And this is what we're talking about, our network artifacts and our host artifacts. And these can be things like user agent strings f…

  6. 25:01

    So the Pyramid of Pain is a good way to, again, visualize Not just the difficulty in detecting certain IOCs, but also visualizing the amount of effort it takes for the attackers to get around any sort of mitigations for the detection of the…