SANS Community Nights are a great way to stay in touch with your local InfoSec community and to hear the latest in technical wizardry, industry intelligence, and thought leadership from our amazing instructors.
View the agenda below:
4th December, Monday
6:00 – 7:00 pm
Registration & Cocktail
7:00pm - 8:00 pm
Presentation
Fast Forensics and Threat Hunting In Windows Event Logs With Yamato Security Tools
Zach Mathis, SANS Certified Instructor
Thank you for your interest in our community nights. This event is at capacity – please send an email to AsiaPacific@sans.org to confirm if spots are available. Alternatively, you can go on our waitlist.
Abstract:
In this talk, you will learn how to first properly configure your Windows audit settings in order to quickly and easily detect a wide variety of cyber-attacks in Windows event logs with free and open source sigma-based Yamato Security DFIR tools (Hayabusa and Takajo). This talk is intended to provide useful information for those new to Windows forensics investigations up to veteran analysts.
You can find information about these tools and other Yamato Security resources here.
Location:
Aloft Kuala Lumpur Sentral - Tactic Room
5, Jalan Stesen Sentral, Kuala Lumpur Sentral, 50470 Kuala Lumpur, Wilayah Persekutuan Kuala Lumpur, Malaysia
