How to find malware with Sysinternals

Dimitrios Margaritis is an IT security officer in the European Economic and Social Committee. He holds a degree in Computer Science from the University of Piraeus and a Diploma in Management from Henley Management College.

Government organizations are usually a complex object of opponents, and traditional methods of detection are not very effective. In this presentation, the authors tried to provide an overview of free tools and methods that were implemented in high-risk environments that are constantly being attacked. It will give detailed information about the use of Microsoft Sysmon and Powershell log data for detection – the ability to search from host-based data.

 


Dimitris offers a step-by-step approach to deploying Sysmon on the corporate network and how to cope with the main problem. The main goal is to share experiences and give practical examples.

 

More.