Explore the worlds best online cybersecurity training with OnDemand - view a Demo Today!


To attend this webcast, login to your SANS Account or create your Account.

A Pentesters perspective: Catching attackers living off the land

  • Thursday, April 12th, 2018 at 1:00 PM EDT (17:00:00 UTC)
  • Jack Danahy and Dave Shackleford
This webcast has been archived. You can view the webcast presentation and download the slides by logging into your SANS Portal Account or creating an Account. Click the Register Now button after you have logged in to view the Webcast.


  • Barkly

You can now attend the webcast using your mobile device!


54% of organizations were compromised in 2017, primarily due to non-malware attack techniques. As a follow on to A pentesters perspective on malware and ransomware, join this webinar to hear SANS analyst, Dave Shackleford and Barkly CTO, Jack Danahy, discuss:

   Why hackers have abandoned malware and moved to abusing built-in tools to initiate attacks

   How attackers are leveraging native commands, powershell, WMIC, windows script host and more to defeat traditional endpoint solutions

   Defensive and offensive strategies for detecting and mitigating attacks using these techniques

   The importance of using frameworks like MITRE Attack and CSC to review your endpoint security readiness

Speaker Bios

Jack Danahy

Jack Danahy is the co-founder and CTO of Barkly, the company advancing endpoint security by combining the strongest protection with the smartest technology and simplest management. A 25-year innovator in computer, network and data security, Jack was previously the founder and CEO of two successful security companies: Qiave Technologies (acquired by Watchguard Technologies in 2000) and Ounce Labs (acquired by IBM in 2009). Jack is a frequent writer and speaker on security and security issues, and has received multiple patents in a variety of security technologies. Prior to founding Barkly, he was the Director of Advanced Security for IBM, and led the delivery of security services for IBM in North America.

Dave Shackleford

Dave Shackleford, a SANS analyst, instructor, course author, GIAC technical director and member of the board of directors for the SANS Technology Institute, is the founder and principal consultant with Voodoo Security. He has consulted with hundreds of organizations in the areas of security, regulatory compliance, and network architecture and engineering. A VMware vExpert, Dave has extensive experience designing and configuring secure virtualized infrastructures. He previously worked as chief security officer for Configuresoft and CTO for the Center for Internet Security. Dave currently helps lead the Atlanta chapter of the Cloud Security Alliance.

Need Help? Visit our FAQ page or email webcast-support@sans.org.

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.