Webcast: Endpoint Security Got You Down? No PowerShell? No Problem.

FRIEND Black Hills Information Security February 25, 2019

Summary

This article announces a one-hour webcast from Black Hills Information Security titled "Endpoint Security Got You Down? No PowerShell? No Problem.". The webcast aims to address challenges faced when PowerShell scripts are detected by Endpoint Detection and Response (EDR) and Windows Defender, suggesting alternative methods for offensive operations.

IFF Assessment

FRIEND

The article promotes a free training event focused on bypassing endpoint security, which is beneficial for defenders looking to understand and improve their detection capabilities.

Defender Context

Defenders should be aware of evolving techniques attackers use to bypass endpoint security measures, especially those that circumvent common scripting languages like PowerShell. Understanding these methods helps in developing more robust detection rules and enhancing overall endpoint protection strategies.

Read Full Story →