Best Offers Of The Year with SANS OnDemand: iPad Pro w/ Magic KB, Surface Go2 or $350 Off


To attend this webcast, login to your SANS Account or create your Account.

This webcast has been archived. To view the webcast login into your SANS Portal Account or create an account by clicking the "Get Registered" button on the right. Once you register, you can download the presentation slides below.

Pillage the Village Redux: More Pen Test Adventures in Post Exploitation

  • Thursday, February 26, 2015 at 3:00 PM EST (2015-02-26 20:00:00 UTC)
  • John Strand, Ed Skoudis

You can now attend the webcast using your mobile device!



Join John Strand and Ed Skoudis as they discuss some really novel approaches to demonstrating business risk though penetration testing with some awesome recommendations for post-exploitation activities. Well look at ways to surreptitiously plunder target machines and pivot through target environments more flexibly than ever in this fun and engaging webcast. Every security professional (from defender through analyst through pen tester) should know about these techniques, which mimic the capabilities of real-world bad guys.

Speaker Bios

Ed Skoudis

Ed Skoudis is the founder of Counter Hack, an innovative organization that designs, builds, and operates popular infosec challenges and simulations including CyberCity, NetWars, Cyber Quests, and Cyber Foundations. As director of the CyberCity project, Ed oversees the development of missions which help train cyber warriors in how to defend the kinetic assets of a physical, miniaturized city. Ed's expertise includes hacker attacks and defenses, incident response, and malware analysis, with over fifteen years of experience in information security. Ed authored and regularly teaches the SANS courses on network penetration testing (Security 560) and incident response (Security 504), helping over three thousand information security professionals each year improve their skills and abilities to defend their networks. He has performed numerous security assessments; conducted exhaustive anti-virus, anti-spyware, Virtual Machine, and IPS research; and responded to computer attacks for clients in government, military, financial, high technology, healthcare, and other industries. Previously, Ed served as a security consultant with InGuardians, International Network Services (INS), Global Integrity, Predictive Systems, SAIC, and Bell Communications Research (Bellcore). Ed also blogs about command line tips and penetration testing.

John Strand

John Strand is a senior instructor and course author with the SANS Institute. In addition to teaching cyber defenders across the world, John co-hosts the world's largest computer security podcast: PaulDotCom Security Weekly. He is also the owner of Black Hills Information Security, specializing in penetration testing and security architecture services. He has presented for the FBI, NASA, the NSA, and at DefCon. In his spare time, he writes loud rock music and makes various futile attempts at fly-fishing. Stay engaged by following John on Twitter: @strandjs Very informative! Mr. John Strand's experience shared through narrative brings course material to life. - Christopher Wilson, USAF

Need Help? Visit our FAQ page or email

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.