all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

The Case of the Disappearing Scheduled Task

Add to bookmarks
May 9, 2022, 11:35 a.m. | 13Cubed

13Cubed www.youtube.com

This episode is based upon a Microsoft Detection and Response (DART) blog post (see Resources section). I, along with two of my colleagues (Johnathan Sykes and Meaghan Bradshaw), performed extensive research regarding two different methods by which it is possible to create "hidden" Scheduled Tasks. While one of the methods has been discussed before, this research shows how it might be leveraged by a Threat Actor. The second technique, as best we can tell, is novel.

*** If you enjoy …

case scheduled task task

Visit resource

More from www.youtube.com / 13Cubed

The Weird Windows Feature You've Never Heard Of 9 hours ago | www.youtube.com
com compromised discuss episode +14
Revisiting Arsenal Image Mounter - The Ultimate Guide 1 month, 2 weeks ago | www.youtube.com
advanced arsenal basics bitlocker +16
Where's the 4624? - Logon Events vs. Account Logons 2 months, 3 weeks ago | www.youtube.com
account communication domain event +10
RDP Authentication vs. Authorization 3 months, 4 weeks ago | www.youtube.com
authentication authorization entry event +11
2024 Investigating Windows Courses 4 months, 2 weeks ago | www.youtube.com
access badge certification check +15
Hyper-V Memory Forensics - MemProcFS to the Rescue! 5 months ago | www.youtube.com
author copy directory dll +15
An Important Change to ShellBags - Windows 11 2023 Update! 6 months, 1 week ago | www.youtube.com
change configuration demo important +9
VMware Memory Forensics - Don't Miss This Important Detail! 7 months, 1 week ago | www.youtube.com
analysis don don't miss esxi +15
Investigating Windows Memory Is Here! 8 months, 1 week ago | www.youtube.com
course endpoints forensics foundations +9

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

Sr. Product Manager

@ MixMode | Remote, US
View on infosec-jobs.com

Information Security Engineers

@ D. E. Shaw Research | New York City
View on infosec-jobs.com

Technology Security Analyst

@ Halton Region | Oakville, Ontario, Canada
View on infosec-jobs.com

Senior Cyber Security Analyst

@ Valley Water | San Jose, CA
View on infosec-jobs.com

Cyber Security Engineer

@ SNC-Lavalin | VA531: 13900 Lincoln Park Dr, Herndon 13900 Lincoln Park Drive Suite 220, Herndon, VA, 20171 USA
View on infosec-jobs.com

Information Systems Security Officer (ISSO) - early career -Tucson AZ, Onsite

@ Austin Community College | AZ855: RMS AP Bldg M05 1151 East Hermans Road Building M05, Tucson, AZ, 85756 USA
View on infosec-jobs.com