Description: Research and analysis into automated malware is commonplace, but does little to assist network defenders against malicious *humans* who have established a point of presence on their networks. This talk provides a taxonomy of human-driven attacks on internal networks, based on years of professional network penetration testing experience. Taking Trustwave SpiderLabs' 2011 Global Security Report as a launching point, we will take a deeper dive into a broader array of internal network attacks. A new weighting system will be applied to these attacks so that, in addition to understanding how the attacks hang together, defenders will see which techniques give attackers the greatest leverage for the least amount of effort and risk.
Tags: securitytube , grrcon , hacking , hackers , information security , convention , computer security , honeynet 11 , grrcon-2011 ,
Disclaimer: We are a infosec video aggregator and this video is linked from an external website. The original author may be different from the user re-posting/linking it here. Please do not assume the authors to be same without verifying.