all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

I Want The Log I Can’t Have

Add to bookmarks
Sept. 19, 2023, 1:13 p.m. | SANS Digital Forensics and Incident Response

SANS Digital Forensics and Incident Response www.youtube.com

I was fascinated when I read during the Solorigate attack that an adversary utilized Golden SAML to gain access to Azure and Office 365 cloud resources. At the time, I was developing an adversary emulation for a blue team capture the flag event and I decided I should make this a key pillar of the emulation so others could experience it. If you’re like me, you have spent some portion of your career working with events generated from on-premise systems. …

access adversary adversary emulation attack azure blue blue team capture cloud cloud resources emulation event flag golden key log office office 365 resources saml team

Visit resource

More from www.youtube.com / SANS Digital Forensics and Incident Response

SANS Threat Analysis Rundown (STAR) | Live Stream 1 week, 4 days ago | www.youtube.com
access accounts acquisition analysis +25
Threat Actor Tool Analysis at Enterprise Scale | Host: Ryan Chapman | September 19, 2023 1 week, 6 days ago | www.youtube.com
actor analysis detect discovery +15
Leveraging Digital Footprints for Darkweb Investigations and Attack Surface Management 2 weeks ago | www.youtube.com
analyst apt apt groups attack +31
Breaching the Depths of the Abyss: Exposing Rootkits and Bootkits 2 weeks ago | www.youtube.com
advanced advanced malware compromised cyber +13
Windows Registry Forensics: There’s Always Something New 2 weeks ago | www.youtube.com
analysis fast forensics foundation +12
Defending and Investigating Hypervisors 2 weeks ago | www.youtube.com
attack attacks continue covert +19
How to Effectively Investigate a Human-Operated Ransomware Attack 2 weeks ago | www.youtube.com
access attack attacks challenges +18
iOS Advanced Recovery: Looking for Deleted Evidence of WhatsApp Activities 2 weeks ago | www.youtube.com
advanced analysis apple artifacts +15
Hunting C2 Beaconing at Scale in the Modern Age 2 weeks ago | www.youtube.com
age applications continue domain +12

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Business Information Security Officer

@ Metrolink | Los Angeles, CA
View on infosec-jobs.com

Cyber Security Consultant

@ Cybit | Belfast, Northern Ireland, United Kingdom
View on infosec-jobs.com

Physical Operations Specialist, AWS Security Operations Center

@ Amazon.com | Herndon, Virginia, USA
View on infosec-jobs.com

Product Cybersecurity Officer (m/w/div.)

@ Bosch Group | Wien, Linz oder Graz, Austria
View on infosec-jobs.com

SC2023-003098 Security Risk Consultant 1 (NS) - WED 11 Oct

@ EMW, Inc. | Braine-l'Alleud, Wallonia, Belgium
View on infosec-jobs.com

Sr Power Design Engineer (Hardware - NetSec)

@ Palo Alto Networks | Santa Clara, CA, United States
View on infosec-jobs.com
View more jobs