The Best Online Cybersecurity Training in the World - SANS OnDemand

Webcasts

To attend this webcast, login to your SANS Account or create your Account.

Windows Defender Exploit Guard for Windows 10

  • Tuesday, October 30th, 2018 at 3:30 PM EDT (19:30:00 UTC)
  • Steve Sims
This webcast has been archived. You can view the webcast presentation and download the slides by logging into your SANS Portal Account or creating an Account. Click the Register Now button after you have logged in to view the Webcast.

You can now attend the webcast using your mobile device!

Overview

With July 2018 marking the end of life for Microsoft's Enhanced Mitigation Experience Toolkit (EMET) utility, the new path forward in regard to cutting-edge exploit mitigations is Windows Defender Exploit Guard. Available only on Windows 10 starting with the Fall 2017 Creators Update, Exploit Guard carries on the controls from EMET, along with new ones, to help prevent successful exploitation of a vulnerability.

In this presentation, join SANS Faculty Fellow, Stephen Sims to take a look at the various controls available, how they work, and their potential concerns. This material comes as a great supplement and introduction to the course SEC599: Defeating Advanced Adversaries: Purple Team Tactics & Kill Chain Defenses.

lable

Speaker Bio

Stephen Sims

Stephen Sims is an industry expert with over 15 years of experience in information technology and security. Stephen currently works out of San Francisco as a consultant. He has spent many years performing security architecture, exploit development, reverse engineering, and penetration testing. Stephen has an MS in information assurance from Norwich University and is a course author and senior instructor for the SANS Institute. He is the author of SANS' only 700-level course, SEC760: Advanced Exploit Development for Penetration Testers, which concentrates on complex heap overflows, patch diffing, and client-side exploits. Stephen is also the lead author on SEC660: Advanced Penetration Testing, Exploits, and Ethical Hacking and co-author of SEC599: Defeating Advanced Adversaries Purple Team Tactics & Kill Chain Defenses. He holds the GIAC Security Expert (GSE) certification as well as the CISSP, CISA, Immunity NOP, and many other certifications. In his spare time Stephen enjoys snowboarding and writing music.

Need Help? Visit our FAQ page or email webcast-support@sans.org.

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.