Learn how threat actors weaponize stealer logs and navigate dark web markets, forums, and C2 networks.

Join us next week with our friends from Flare, where we'll Unravel Infostealer Threat Networks in our free one-hour Anti-Cast.

https://www.antisyphontraining.com/event/anti-cast-unraveling-infostealer-threat-networks-with-flare/

Ready for more Linux amazingness with @hal_pomeranz ? Then join us for this week's Anti-Cast, "XFS Forensics with xfs_db," Aug. 16 at 12 p.m. EDT! Register here: https://blackhillsinfosec.zoom.us/webinar/register/WN_fCna_N-QRSCOHNT-eqHRww
PreShow Banter™ at 11:30 a.m. EDT.

Despite being a common Linux file system, forensic support for XFS is still largely lacking. In this session, Hal will describe how to turn the humble xfs_db tool into a useful forensic application for examining XFS file system internals and finding critical evidence. Attackers aren’t the only ones who can “live off the land”!

Chat with your fellow attendees in the Antisyphon Discord server here: https://discord.gg/antisyphon -- in the #webcasts-livestreams channel

"Please hack this server"... thanks for beating up my box, here's a retrospect! All in the name of active defense & cyber deception 😎 Check out how many IPs hit the machine, their login attempts, & what commands they ran for persistence, privesc, & more: https://youtu.be/NWytrZVM6WM

This exercise was inspired by @Antisy_Training @BHinfosecurity and @strandjs Pay What You Can Training and labs for Cyber Deception! Jump into PWYC at whatever cost makes sense for you! https://jh.live/pwyc

🗣Upcoming In-Person Public Speaking :
- 🧢@BlueTeamCon (Chicago, IL) [Aug-26] https://blueteamcon.com/2023/talk-tracks/talk-track-2-30-minutes/
- 🤠Texas Cyber Summit [Sept-29] (Austin, TX) https://texascyber.org/
- 🐄Wild West Hackin' Fest [Oct-17] (Deadwood, SD) https://wildwesthackinfest.com/event/next-level-osint-w-mishaal-khan/

Catch me at any one of these to say hi, have my book signed ✍🏼 📓 or ask for a free copy, I'll keep a few with me to give away.

@texascyber @Antisy_Training

@eljorgeabides I'd recommend starting with one of the network courses at @Antisy_Training

Join @hal_pomeranz and the Antisyphon Team this Wednesday at 12 p.m. EDT for our next Anti-Cast, "Forensicating Linux LD_PRELOAD Rootkits"!
Tune in at 11:30 a.m. EDT for PreShow Banter™. Register here: https://zoom.us/webinar/register/WN_T43NCXR2Sg2jDmVpxUZXgw

Widespread availability of PoC Linux LD_PRELOAD rootkits means that even trivial cryptomining attacks are starting to deploy them. This talk demonstrates a simple LD_PRELOAD rootkit and techniques for detecting them in a live response scenario and by memory analysis. Get the jump on your adversaries with this fast-paced, practical introduction.

Chat with your fellow attendees in the Antisyphon Discord server here: https://discord.gg/antisyphon -- in the #webcasts-livestreams channel

Trap hackers with cyber deception: set Dirbuster, gobuster, feroxbuster or any web crawlers off into an infinite rabbit hole with Spidertrap! Maybe some inspiration for you to craft your own countermeasures and give defense _more time_ to respond to attacks.
https://youtu.be/PS--LR0nrWc

This is a showcase of the Spidertrap lab and exercise from @strandjs & @Antisy_Training Pay What You Can training: thanks for their sponsorship & support! You can learn more Cyber Deception: https://jh.live/pwyc

Remember people, no matter who you are and what you do to live, thrive, and survive, everybody... everybodyyy... needs some... Blue Team in their life! Join us on Aug. 23 as we get the band back together for our Antisyphon Blue Team Summit 2023, where we'll have talks, CTF, and post-summit training on Aug. 24-25.
We'll see you there... Don't forget your shades and favorite Blues songs. 🕶️ 🎵
Event info and registration: https://www.antisyphontraining.com/training/blue-team/2023/06/blue-team-summit-coming-in-august-2023/

Join us for an Anti-Cast this Wednesday with the Linux master himself, @hal_pomeranz ! Webcast starts at 12 p.m. ET, PreShow Banter™ at 11:30 a.m. ET. Register here: https://zoom.us/webinar/register/WN_1OQ0y_kMRPydr6ECFizHjg
If you’ve been using the Linux command line for a long time, you may have missed out on some sweet new features of common commands that can make your life much better. Join Sensei Hal as we break down some practical examples and demonstrate some useful new functionality.

Chat with your fellow attendees in the Antisyphon Discord server here: https://discord.gg/antisyphon -- in the #webcasts-livestreams channel

Check out Hal's class, "Linux Command Line for Analysts & Operators," that he will be teaching live, in-person at @WWHackinFest - Deadwood 2023. → https://wildwesthackinfest.com/conference/pre-conference-training/

New to Azure pentesting and feel like you could use a little guidance? Then be sure to check this past Black Hills Information Security webcast, "Getting Started in Pentesting The Cloud–Azure," with @dafthack!
Watch the webcast here: https://www.youtube.com/watch?v=u_3cV0pzptY
Register for "Breaching the Cloud" with Beau June 27-30: https://cvent.me/VKRn0e?RefId=BHIS203_MD

Webcast published 6/2/21

For the next run of "Foundational Data Protection Training" with Bill McCauley, from @secureideas June 13-14, we're excited to be donating 10% of class revenue to @hak4kidz !

Help support this project: https://hak4kidz.com

Class details & registration: https://cvent.me/m9LDwa?RefId=10_MD

Alright, folks, what was your answer to this PCI question? Here's Nathan Sweaney's answer! ↓
The Report on Compliance (ROC) is filled out and signed by a QSA who validates the organization's PCI compliance. It is usually only required for Level 1 merchants, and occasionally some smaller merchants, and must be submitted to the merchant's acquiring bank. The Attestation of Compliance (AOC) is a similar document used by smaller merchants that can be used to summarize the status of the Self Assessment Questionnaire (SAQ). It is usually not signed by a QSA or required to be submitted.

Join Nathan on June 6, 12-4 p.m. ET, for his Pay-What-You-Can class, "PCI 101"! Register here: https://cvent.me/KnXMoB?RefId=Q%3F_MD

Check out this past Black Hills Information Security webcast, "The SOC Age Or, A Young SOC Analyst's Illustrated Primer" w/ @strandjs . https://www.youtube.com/watch?v=Lhol4rZo_ts
Join John for "SOC Core Skills" June 12-15. Come for the learning, stay for the rants and John's face memes! Register: https://cvent.me/LnDK7E?RefId=BHIS154_MD

In the PCI context, what's the difference between a ROC and an AOC? Tell us what you think!
Learn the answer to this question and more in Nathan Sweaney's upcoming Pay-What-You-Can class, “PCI 101,” on June 6! Details and registration: https://cvent.me/KnXMoB?RefId=Q%3F_MD

Don't forget our Black Hills Information/Antisyphon Training webcast today 1 p.m. ET! Still time to register: https://zoom.us/webinar/register/WN_d-GI7v7bQriRu_O-mi7kcg#/registration
Join in at 12:30 p.m. ET for PreShow Banter™
Join @yoda June 13-16 for his class, “Introduction to Python.” Details and reg here: https://cvent.me/4brYMg?RefId=WB525_MD

This father/son duo wants to believe... that you will be at Deadwood 2023! Please welcome Ray Felch and @ustayready as two more of our phenomenal speakers at this year's con!

Pre-con training seats are limited, so be sure to grab those tickets! → https://cvent.me/AMQlAL?RefId=MD

Here's a past livestream with Chris Brenton where he shows how to go through PCAP files with Zeek. https://www.youtube.com/watch?v=Jd80NfBVAcU

Join Chris June 6-9 for his Pay-What-You-Can class, "Getting Started in Packet Decoding"! Details and registration here: https://cvent.me/D0Dlmg?RefId=ANTI009_MD

In your opinion, what's the most difficult part of pentest reporting?
Be sure to join BB King for his PWYC class, "Reporting for Pentesters," on June 7! Details & registration here: https://cvent.me/Onr3Og?RefId=P%3F_MD

Antisyphon Training & Black Hills Information Security are collaborating on a webinar! 🎉💻

Hey folks! 👋

🔓 Exploit-db contains many different forms of software vulnerability exploits.

🔍 These various software exploits are documented as anything from simple command line entities through proof of concept (POC) scripts written in languages like C, C++, C#, Ruby, Python, and UNIX shell scripts.

🎥 In this webcast, @yoda will break down the Python language components of an exploit documented in CVE-2019-13577, targeting the Maple Computer WBT SNMP Administrator version 2.0.195.15. 🐍💥

Thursday, May 25th - 1:00 PM ET

Register: https://zoom.us/webinar/register/WN_d-GI7v7bQriRu_O-mi7kcg#/registration

He will discuss the required Python language components, modules, and porting of the exploit from Python2 to Python3.

If none of that made any sense to you, then this might be the perfect webcast to start learning these things.

Joff is also teaching another run of his "Introduction to Python" course in June! Find out more & register here: https://cvent.me/4brYMg?RefId=WB525_MD

Chat with your fellow attendees in the Antisyphon Discord server ➡️: https://discord.com/invite/antisyphon

Show up early for the pre-show!

John Strand & Joff Thyer -

Part 2 of BB's webcast, "Professional Pentest Reporting - A Model for Clear Communication," is up! https://www.youtube.com/watch?v=Uu3pardnHiI
Register for BB's Pay-What-You-Can class, "Reporting for Pentesters," on June 7, 12-4 p.m. ET. → https://cvent.me/R1LDnW?RefId=P2-128_MD