Watch Tracking attackers: Why attribution matters and how to do it. in New Channel | Channify

Download slides: https://www.activecountermeasures.com/presentations/ 2:43 Introduction Cyber attribution/Cyber detection, fundamentals, goal and objective of threat intelligence feeds 16:17 Canary Token introduction, Recon Phase, ADHD, AWS Keys 28:30 Executables, having hackers computers ping you and how to do this 40:22 Cloned websites, Word Docs, Canary Tokens in use, and Word Web Bugs 49:37 Q&A Need a Pen Test, Red Team, and/or Threat Hunt? www.blackhillsinfosec.com Presented by: John Strand In this BHIS webcast we cover some new techniques and tactics on how to track attackers via various honey tokens.  We cover how to track with Word Web Bugs in ADHD, and cover the awesome toolkit from Thinkst.   We also cover some of the legal ramifications involved in do this. I am covering this for a couple of reasons. First, there are a lot of companies who are selling cyber deception in the form of honeypots, which is cool - but not near enough for attribution. Also, it is time to start gearing up for Black Hat. We are teaching our Cyber Deception class again and I figure as I update the slides, I can get them out as a webcasts for you! Download ADHD here: https://www.blackhillsinfosec.com/projects Also, you can now register for our Cyber Deception class at Black Hat 2019 here: https://www.blackhat.com/us-19/training/schedule/index.html#a-guide-to-active-defense-cyber-deception-and-hacking-back-14124