OnDemand + GIAC = Relevant Skills, Proven Ability


To attend this webcast, login to your SANS Account or create your Account.

Infection to Remediation: Exploring the InfoStealer Kill Chain

  • Tuesday, December 4th, 2018 at 10:30 AM EST (15:30:00 UTC)
  • Jake Williams and Rohan Viegas
This webcast has been archived. You can view the webcast presentation and download the slides by logging into your SANS Portal Account or creating an Account. Click the Register Now button after you have logged in to view the Webcast.


  • VMRay

You can now attend the webcast using your mobile device!


An Information Stealer is a form of malware designed to collect sensitive information such as usernames and passwords from a victim's system and send it to the attacker. Privacy violation, leakage of confidential information, theft using stolen banking credentials and impersonation by the attacker are only some of the dangers posed by this type of malware.

In this webcast, we will discuss the following aspects of Information Stealers

  • How Information Stealers are advertised and sold
  • Infection Methods
  • Components of Information Stealers: Server-side and client-side components
  • Capabilities of Information Stealers
  • Information exfiltration and communication
  • Detection and Remediation

Attend this webcast to understand the dangers posed by Information Stealers and how they can be detected early.

Speaker Bios

Jake Williams

Jake Williams is a SANS analyst, senior SANS instructor, course author and designer of several NetWars challenges for use in SANS' popular, "gamified" information security training suite. Jake spent more than a decade in information security roles at several government agencies, developing specialties in offensive forensics, malware development and digital counterespionage. Jake is the founder of Rendition InfoSec, which provides penetration testing, digital forensics and incident response, expertise in cloud data exfiltration, and the tools and guidance to secure client data against sophisticated, persistent attacks on-premises and in the cloud.

Rohan Viegas

Rohan brings over 12 years of experience in product development and management roles to VMRay. In his role as Product Manager for Hewlett-Packard Enterprise, prior to VMRay, Rohan managed a portfolio of products including network management and security software.

Need Help? Visit our FAQ page or email webcast-support@sans.org.

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.