Register now for SANS Cyber Defense Initiative 2016 and save $400.

Baltimore 2014

Baltimore, MD | Mon, Sep 22 - Sat, Sep 27, 2014

From APT to AVT - Investigating the Latest Threats

  • Jess Garcia
  • Friday, September 26th, 7:15pm - 8:15pm

APT (Advanced Persistent Threat) attacks can no longer be considered new. However, the techniques behind those attacks continue evolving, and now drive-by and watering hole attacks are slowly replacing the traditional spear-phising.

At the same time the Dark Side continues evolving towards more effective attacks that can bypass our defenses. AVT (Advanced Volatile Threat) seems to be getting more and more popular, as well as sophisticated Zero-Day Malware, Ransomware, POS Malware, Android Malware or even Airgap Jumping Malware.

Protecting our organizations against these threats is getting more and more difficult, and a new trend towards early detection and rapid response seems to be emerging in the defensive community.

In this talk Jess Garcia will be dissecting this new breed of attacks, and will show how a combination of different forensic techniques can be effective in the detection, investigation, and analysis of such attacks.

Bonus Sessions

The following bonus sessions are open to all paid attendees at no additional cost. There are many different types of events that fall into these categories:

  • SANS@Night: Evening presentations given after day courses have ended. This category includes Keynotes.
  • Special Events: SANS-hosted events and other non-technical recreational offerings. This category includes, but is not limited to, Receptions and Information Tables.
Monday, September 22
Session Speaker Time Type
General Session - Welcome to SANS Dr. Eric Cole Monday, September 22nd, 8:15am - 8:45am Special Events
SANS Technology Institute Open House Bill Lockhart, Executive Director, SANS Technology Institute Monday, September 22nd, 6:00pm - 7:00pm Special Events
APT: It is Time to Act Dr. Eric Cole Monday, September 22nd, 7:15pm - 9:15pm Keynote
Tuesday, September 23
Session Speaker Time Type
Extracting User Credentials using Memory Forensics Alissa Torres Tuesday, September 23rd, 7:15pm - 8:15pm SANS@Night
Debunking the Complex Password Myth Keith Palmgren Tuesday, September 23rd, 8:15pm - 9:15pm SANS@Night
Wednesday, September 24
Session Speaker Time Type
The 13 Absolute Truths of Security Keith Palmgren Wednesday, September 24th, 7:15pm - 8:15pm SANS@Night
DLP FAIL!!! Using Encoding, Steganography, and Covert Channels to Evade DLP and Other Critical Controls Kevin Fiscus Wednesday, September 24th, 8:15pm - 9:15pm SANS@Night
Thursday, September 25
Session Speaker Time Type
Continuous Ownage: Why you Need Continuous Monitoring Seth Misenar Thursday, September 25th, 7:15pm - 8:15pm SANS@Night
Friday, September 26
Session Speaker Time Type
From APT to AVT - Investigating the Latest Threats Jess Garcia Friday, September 26th, 7:15pm - 8:15pm SANS@Night