IMPROVE YOUR SECURITY POSTURE A RED TEAM PERSPECTIVE TIM MEDIN - - PowerPoint PPT Presentation

improve your security
SMART_READER_LITE
LIVE PREVIEW

IMPROVE YOUR SECURITY POSTURE A RED TEAM PERSPECTIVE TIM MEDIN - - PowerPoint PPT Presentation

Feb 07, 2023 784 likes •1.11k views

IMPROVE YOUR SECURITY POSTURE A RED TEAM PERSPECTIVE TIM MEDIN tim@redsiege.com BE LAZY NOT APT JUST PT EQUIFAX CIS CONTROL 1 & 2 INVENTORY PHISHING 101 WEB FILTER UNKNOWN NEW UNCATEGORIZED FINDING A DOMAIN STOP ATTACHMENTS

slide-1
SLIDE 1

IMPROVE YOUR SECURITY POSTURE A RED TEAM PERSPECTIVE

TIM MEDIN tim@redsiege.com

slide-2
SLIDE 2

BE LAZY

slide-3
SLIDE 3

NOT APT JUST PT

slide-4
SLIDE 4

EQUIFAX

slide-5
SLIDE 5

CIS CONTROL 1 & 2 INVENTORY

slide-6
SLIDE 6

PHISHING 101

slide-7
SLIDE 7

WEB FILTER UNKNOWN NEW UNCATEGORIZED

slide-8
SLIDE 8

FINDING A DOMAIN

slide-9
SLIDE 9
slide-10
SLIDE 10
slide-11
SLIDE 11

STOP ATTACHMENTS DISABLE MACROS

slide-12
SLIDE 12

WINDOWS DEFENDER

slide-13
SLIDE 13
slide-14
SLIDE 14
slide-15
SLIDE 15

PREVENTION FAILS SIGNATURES FAIL DETECTION IS A MUST

slide-16
SLIDE 16

POWERSHELL

slide-17
SLIDE 17

CONSTRAINED LANGUAGE MODE & LOGGING

slide-18
SLIDE 18

SPECTER MELTDOWN

slide-19
SLIDE 19

BAD PASSWORDS

slide-20
SLIDE 20

PASSWORD SPRAY

slide-21
SLIDE 21
slide-22
SLIDE 22
slide-23
SLIDE 23
slide-24
SLIDE 24

DETECT SPRAY MICROSOFT AZURE 2FA

slide-25
SLIDE 25

2FA IS NOT PERFECT

slide-26
SLIDE 26

BEWARE OF CRED SNIPER

slide-27
SLIDE 27

THE MYTH OF ESCALATION

slide-28
SLIDE 28

DOMAIN ADMIN IS ONLY A TOOL

slide-29
SLIDE 29

KEEP IT SIMPLE

slide-30
SLIDE 30

PROTECT DETECT

slide-31
SLIDE 31

Tim Medin

tim@redsiege.com @TimMedin @RedSiegeInfoSec