all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

I Want The Log I Can’t Have

Add to bookmarks
Sept. 19, 2023, 1:13 p.m. | SANS Digital Forensics and Incident Response

SANS Digital Forensics and Incident Response www.youtube.com

I was fascinated when I read during the Solorigate attack that an adversary utilized Golden SAML to gain access to Azure and Office 365 cloud resources. At the time, I was developing an adversary emulation for a blue team capture the flag event and I decided I should make this a key pillar of the emulation so others could experience it. If you’re like me, you have spent some portion of your career working with events generated from on-premise systems. …

access adversary adversary emulation attack azure blue blue team capture cloud cloud resources emulation event flag golden key log office office 365 resources saml team

Visit resource

More from www.youtube.com / SANS Digital Forensics and Incident Response

FOR585: Smartphone Forensic Analysis In-Depth course overview 2 weeks, 6 days ago | www.youtube.com
acquisition advanced analysis applications +25
FOR578: Cyber Threat Intelligence Course Overview 1 month ago | www.youtube.com
advanced advanced persistent threats adversary cyber +19
Why take FOR578 OnDemand? with Robert M. Lee 1 month ago | www.youtube.com
access courses cyber cyber security +14
Why take SANS OnDemand? with Robert M. Lee 1 month ago | www.youtube.com
access benefits certified chat +16
FOR578: Cyber Threat Intelligence Course Overview 1 month ago | www.youtube.com
advanced advanced persistent threats adversary cyber +19
SANS Threat Analysis Rundown (STAR) 1 month, 1 week ago | www.youtube.com
analysis apt certified community +20
Rob T. Lee - Could LockBit, ransomware provider have been behind Lurie hack? 1 month, 2 weeks ago | www.youtube.com
attack british call children +18
Rob T. Lee Chicago's Lurie Children's Hospital RANSOMWARE ATTACK 1 month, 2 weeks ago | www.youtube.com
attack cbs chicago children +18
FOR589: Cybercrime Intelligence Overview 1 month, 3 weeks ago | www.youtube.com
accounts capabilities course cryptocurrency +21

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote
View on infosec-jobs.com

Application Security Engineer - Remote Friendly

@ Unit21 | San Francisco,CA; New York City; Remote USA;
View on infosec-jobs.com

Cloud Security Specialist

@ AppsFlyer | Herzliya
View on infosec-jobs.com

Malware Analysis Engineer - Canberra, Australia

@ Apple | Canberra, Australian Capital Territory, Australia
View on infosec-jobs.com

Product CISO

@ Fortinet | Sunnyvale, CA, United States
View on infosec-jobs.com

Manager, Security Engineering

@ Thrive | United States - Remote
View on infosec-jobs.com
View more jobs