�ݺ�ߣshows by User: DanielBohannon2

�ݺ�ߣshows by User: DanielBohannon2 / http://www.slideshare.net/images/logo.gif �ݺ�ߣshows by User: DanielBohannon2 / Fri, 05 Jul 2019 17:47:55 GMT �ݺ�ߣShare feed for �ݺ�ߣshows by User: DanielBohannon2 PesterSec: Using Pester & ScriptAnalyzer to Detect Obfuscated PowerShell /DanielBohannon2/pestersec-using-pester-scriptanalyzer-to-detect-obfuscated-powershell pestersec-usingpesterscriptanalyzertodetectobfuscatedpowershell-190705174755
�ݺ�ߣs from presentation: "PesterSec: Using Pester & ScriptAnalyzer to Detect Obfuscated PowerShell" presented at PSConfEU in Hanover, Germany. For more information: http://www.danielbohannon.com/presentations/ ]]>
�ݺ�ߣs from presentation: "PesterSec: Using Pester & ScriptAnalyzer to Detect Obfuscated PowerShell" presented at PSConfEU in Hanover, Germany. For more information: http://www.danielbohannon.com/presentations/ ]]> Fri, 05 Jul 2019 17:47:55 GMT /DanielBohannon2/pestersec-using-pester-scriptanalyzer-to-detect-obfuscated-powershell DanielBohannon2@slideshare.net(DanielBohannon2) PesterSec: Using Pester & ScriptAnalyzer to Detect Obfuscated PowerShell DanielBohannon2 �ݺ�ߣs from presentation: "PesterSec: Using Pester & ScriptAnalyzer to Detect Obfuscated PowerShell" presented at PSConfEU in Hanover, Germany. For more information: http://www.danielbohannon.com/presentations/ <img style="border:1px solid #C3E6D8;float:right;" alt="" src="https://cdn.slidesharecdn.com/ss_thumbnails/pestersec-usingpesterscriptanalyzertodetectobfuscatedpowershell-190705174755-thumbnail.jpg?width=120&height=120&fit=bounds" /> �ݺ�ߣs from presentation: "PesterSec: Using Pester & ScriptAnalyzer to Detect Obfuscated PowerShell" presented at PSConfEU in Hanover, Germany. For more information: http://www.danielbohannon.com/presentations/

PesterSec: Using Pester & ScriptAnalyzer to Detect Obfuscated PowerShell from Daniel Bohannon

]]> 555 3 https://cdn.slidesharecdn.com/ss_thumbnails/pestersec-usingpesterscriptanalyzertodetectobfuscatedpowershell-190705174755-thumbnail.jpg?width=120&height=120&fit=bounds presentation Black http://activitystrea.ms/schema/1.0/post

http://activitystrea.ms/schema/1.0/posted

0 Malicious Payloads vs Deep Visibility: A PowerShell Story /slideshow/malicious-payloads-vs-deep-visibility-a-powershell-story/144236365 maliciouspayloadsvsdeepvisibility-apowershellstory-sp4rkcon-190507203941
�ݺ�ߣs for Sp4rkCon 2019 presentation.]]>
�ݺ�ߣs for Sp4rkCon 2019 presentation.]]> Tue, 07 May 2019 20:39:41 GMT /slideshow/malicious-payloads-vs-deep-visibility-a-powershell-story/144236365 DanielBohannon2@slideshare.net(DanielBohannon2) Malicious Payloads vs Deep Visibility: A PowerShell Story DanielBohannon2 �ݺ�ߣs for Sp4rkCon 2019 presentation. <img style="border:1px solid #C3E6D8;float:right;" alt="" src="https://cdn.slidesharecdn.com/ss_thumbnails/maliciouspayloadsvsdeepvisibility-apowershellstory-sp4rkcon-190507203941-thumbnail.jpg?width=120&height=120&fit=bounds" /> �ݺ�ߣs for Sp4rkCon 2019 presentation.

Malicious Payloads vs Deep Visibility: A PowerShell Story from Daniel Bohannon

]]> 2614 8 https://cdn.slidesharecdn.com/ss_thumbnails/maliciouspayloadsvsdeepvisibility-apowershellstory-sp4rkcon-190507203941-thumbnail.jpg?width=120&height=120&fit=bounds presentation Black http://activitystrea.ms/schema/1.0/post

http://activitystrea.ms/schema/1.0/posted

0 SignaturesAreDead Long Live RESILIENT Signatures /slideshow/signaturesaredead-long-live-resilient-signatures/118702506 signaturesaredead-181008151108
�ݺ�ߣs from presentation: $SignaturesAreDead = "Long Live RESILIENT Signatures" wide ascii nocase originally released at SANS DFIR Summit 2018. For more information: http://www.danielbohannon.com/presentations/ ]]>
�ݺ�ߣs from presentation: $SignaturesAreDead = "Long Live RESILIENT Signatures" wide ascii nocase originally released at SANS DFIR Summit 2018. For more information: http://www.danielbohannon.com/presentations/ ]]> Mon, 08 Oct 2018 15:11:08 GMT /slideshow/signaturesaredead-long-live-resilient-signatures/118702506 DanielBohannon2@slideshare.net(DanielBohannon2) SignaturesAreDead Long Live RESILIENT Signatures DanielBohannon2 �ݺ�ߣs from presentation: $SignaturesAreDead = "Long Live RESILIENT Signatures" wide ascii nocase originally released at SANS DFIR Summit 2018. For more information: http://www.danielbohannon.com/presentations/ <img style="border:1px solid #C3E6D8;float:right;" alt="" src="https://cdn.slidesharecdn.com/ss_thumbnails/signaturesaredead-181008151108-thumbnail.jpg?width=120&height=120&fit=bounds" /> �ݺ�ߣs from presentation: $SignaturesAreDead = "Long Live RESILIENT Signatures" wide ascii nocase originally released at SANS DFIR Summit 2018. For more information: http://www.danielbohannon.com/presentations/

SignaturesAreDead Long Live RESILIENT Signatures from Daniel Bohannon

]]> 1696 4 https://cdn.slidesharecdn.com/ss_thumbnails/signaturesaredead-181008151108-thumbnail.jpg?width=120&height=120&fit=bounds presentation Black http://activitystrea.ms/schema/1.0/post

http://activitystrea.ms/schema/1.0/posted

0 Revoke-Obfuscation /slideshow/revokeobfuscation/96574710 revoke-obfuscation-180509234749
�ݺ�ߣs from presentation: "Revoke-Obfuscation: PowerShell Obfuscation Detection (And Evasion) Using Science" originally released at Black Hat USA 2017 & DEF CON by @danielhbohannon and @Lee_Holmes. For more information: http://www.danielbohannon.com/presentations/ ]]>
�ݺ�ߣs from presentation: "Revoke-Obfuscation: PowerShell Obfuscation Detection (And Evasion) Using Science" originally released at Black Hat USA 2017 & DEF CON by @danielhbohannon and @Lee_Holmes. For more information: http://www.danielbohannon.com/presentations/ ]]> Wed, 09 May 2018 23:47:49 GMT /slideshow/revokeobfuscation/96574710 DanielBohannon2@slideshare.net(DanielBohannon2) Revoke-Obfuscation DanielBohannon2 �ݺ�ߣs from presentation: "Revoke-Obfuscation: PowerShell Obfuscation Detection (And Evasion) Using Science" originally released at Black Hat USA 2017 & DEF CON by @danielhbohannon and @Lee_Holmes. For more information: http://www.danielbohannon.com/presentations/ <img style="border:1px solid #C3E6D8;float:right;" alt="" src="https://cdn.slidesharecdn.com/ss_thumbnails/revoke-obfuscation-180509234749-thumbnail.jpg?width=120&height=120&fit=bounds" /> �ݺ�ߣs from presentation: "Revoke-Obfuscation: PowerShell Obfuscation Detection (And Evasion) Using Science" originally released at Black Hat USA 2017 & DEF CON by @danielhbohannon and @Lee_Holmes. For more information: http://www.danielbohannon.com/presentations/

Revoke-Obfuscation from Daniel Bohannon

]]> 501 2 https://cdn.slidesharecdn.com/ss_thumbnails/revoke-obfuscation-180509234749-thumbnail.jpg?width=120&height=120&fit=bounds presentation Black http://activitystrea.ms/schema/1.0/post

http://activitystrea.ms/schema/1.0/posted

0 Invoke-DOSfuscation /slideshow/invokedosfuscation/96573591 invoke-dosfuscation-180509232908
�ݺ�ߣs from presentation: "Invoke-DOSfuscation: Techniques FOR %F IN (-style) DO (S-level CMD Obfuscation)" originally released at Black Hat Asia 2018 in Singapore. For more information: http://www.danielbohannon.com/presentations/]]>
�ݺ�ߣs from presentation: "Invoke-DOSfuscation: Techniques FOR %F IN (-style) DO (S-level CMD Obfuscation)" originally released at Black Hat Asia 2018 in Singapore. For more information: http://www.danielbohannon.com/presentations/]]> Wed, 09 May 2018 23:29:08 GMT /slideshow/invokedosfuscation/96573591 DanielBohannon2@slideshare.net(DanielBohannon2) Invoke-DOSfuscation DanielBohannon2 �ݺ�ߣs from presentation: "Invoke-DOSfuscation: Techniques FOR %F IN (-style) DO (S-level CMD Obfuscation)" originally released at Black Hat Asia 2018 in Singapore. For more information: http://www.danielbohannon.com/presentations/ <img style="border:1px solid #C3E6D8;float:right;" alt="" src="https://cdn.slidesharecdn.com/ss_thumbnails/invoke-dosfuscation-180509232908-thumbnail.jpg?width=120&height=120&fit=bounds" /> �ݺ�ߣs from presentation: "Invoke-DOSfuscation: Techniques FOR %F IN (-style) DO (S-level CMD Obfuscation)" originally released at Black Hat Asia 2018 in Singapore. For more information: http://www.danielbohannon.com/presentations/

Invoke-DOSfuscation from Daniel Bohannon

]]> 399 2 https://cdn.slidesharecdn.com/ss_thumbnails/invoke-dosfuscation-180509232908-thumbnail.jpg?width=120&height=120&fit=bounds presentation Black http://activitystrea.ms/schema/1.0/post

http://activitystrea.ms/schema/1.0/posted

0 DevSec Defense /slideshow/devsec-defense/96572285 devsecdefense-180509230952
�ݺ�ߣs from presentation: "DevSec Defense: How DevOps Practices Can Drive Detection Development For Defenders" For more information: http://www.danielbohannon.com/presentations/]]>
�ݺ�ߣs from presentation: "DevSec Defense: How DevOps Practices Can Drive Detection Development For Defenders" For more information: http://www.danielbohannon.com/presentations/]]> Wed, 09 May 2018 23:09:52 GMT /slideshow/devsec-defense/96572285 DanielBohannon2@slideshare.net(DanielBohannon2) DevSec Defense DanielBohannon2 �ݺ�ߣs from presentation: "DevSec Defense: How DevOps Practices Can Drive Detection Development For Defenders" For more information: http://www.danielbohannon.com/presentations/ <img style="border:1px solid #C3E6D8;float:right;" alt="" src="https://cdn.slidesharecdn.com/ss_thumbnails/devsecdefense-180509230952-thumbnail.jpg?width=120&height=120&fit=bounds" /> �ݺ�ߣs from presentation: "DevSec Defense: How DevOps Practices Can Drive Detection Development For Defenders" For more information: http://www.danielbohannon.com/presentations/

DevSec Defense from Daniel Bohannon

]]> 710 5 https://cdn.slidesharecdn.com/ss_thumbnails/devsecdefense-180509230952-thumbnail.jpg?width=120&height=120&fit=bounds presentation Black http://activitystrea.ms/schema/1.0/post

http://activitystrea.ms/schema/1.0/posted

0 Invoke-CradleCrafter: Moar PowerShell obFUsk8tion & Detection (@('Tech','niques') -Join '') /slideshow/invokecradlecrafter-moar-powershell-obfusk8tion-detection-techniques-join/75500722 invoke-cradlecrafter-170428122957
These are the slides for my presentation at x33fcon (April 28, 2017) where I publicly released Invoke-CradleCrafter.]]>
These are the slides for my presentation at x33fcon (April 28, 2017) where I publicly released Invoke-CradleCrafter.]]> Fri, 28 Apr 2017 12:29:56 GMT /slideshow/invokecradlecrafter-moar-powershell-obfusk8tion-detection-techniques-join/75500722 DanielBohannon2@slideshare.net(DanielBohannon2) Invoke-CradleCrafter: Moar PowerShell obFUsk8tion & Detection (@('Tech','niques') -Join '') DanielBohannon2 These are the slides for my presentation at x33fcon (April 28, 2017) where I publicly released Invoke-CradleCrafter. <img style="border:1px solid #C3E6D8;float:right;" alt="" src="https://cdn.slidesharecdn.com/ss_thumbnails/invoke-cradlecrafter-170428122957-thumbnail.jpg?width=120&height=120&fit=bounds" /> These are the slides for my presentation at x33fcon (April 28, 2017) where I publicly released Invoke-CradleCrafter.

Invoke-CradleCrafter: Moar PowerShell obFUsk8tion & Detection (@('Tech','niques') -Join '') from Daniel Bohannon

]]> 3422 6 https://cdn.slidesharecdn.com/ss_thumbnails/invoke-cradlecrafter-170428122957-thumbnail.jpg?width=120&height=120&fit=bounds presentation Black http://activitystrea.ms/schema/1.0/post

http://activitystrea.ms/schema/1.0/posted

0 Invoke-Obfuscation nullcon 2017 /slideshow/invokeobfuscation-nullcon-2017/72770015 invoke-obfuscationnullcon2017-170303104150
�ݺ�ߣs from 2017-03-03 nullcon presentation on PowerShell obfuscation techniques.]]>
�ݺ�ߣs from 2017-03-03 nullcon presentation on PowerShell obfuscation techniques.]]> Fri, 03 Mar 2017 10:41:50 GMT /slideshow/invokeobfuscation-nullcon-2017/72770015 DanielBohannon2@slideshare.net(DanielBohannon2) Invoke-Obfuscation nullcon 2017 DanielBohannon2 �ݺ�ߣs from 2017-03-03 nullcon presentation on PowerShell obfuscation techniques. <img style="border:1px solid #C3E6D8;float:right;" alt="" src="https://cdn.slidesharecdn.com/ss_thumbnails/invoke-obfuscationnullcon2017-170303104150-thumbnail.jpg?width=120&height=120&fit=bounds" /> �ݺ�ߣs from 2017-03-03 nullcon presentation on PowerShell obfuscation techniques.

Invoke-Obfuscation nullcon 2017 from Daniel Bohannon

]]> 6784 8 https://cdn.slidesharecdn.com/ss_thumbnails/invoke-obfuscationnullcon2017-170303104150-thumbnail.jpg?width=120&height=120&fit=bounds presentation Black http://activitystrea.ms/schema/1.0/post

http://activitystrea.ms/schema/1.0/posted

0 Invoke-Obfuscation DerbyCon 2016 /slideshow/invokeobfuscation-derbycon-2016/66405101 invokeobfuscationderbycon2016-160926042615
�ݺ�ߣs from DerbyCon 2016 presentation -- Invoke-Obfuscation: PowerShell obFUsk8tion Techniques & How To (Try To) D""e`Tec`T 'Th'+'em']]>
�ݺ�ߣs from DerbyCon 2016 presentation -- Invoke-Obfuscation: PowerShell obFUsk8tion Techniques & How To (Try To) D""e`Tec`T 'Th'+'em']]> Mon, 26 Sep 2016 04:26:15 GMT /slideshow/invokeobfuscation-derbycon-2016/66405101 DanielBohannon2@slideshare.net(DanielBohannon2) Invoke-Obfuscation DerbyCon 2016 DanielBohannon2 �ݺ�ߣs from DerbyCon 2016 presentation -- Invoke-Obfuscation: PowerShell obFUsk8tion Techniques & How To (Try To) D""e`Tec`T 'Th'+'em' <img style="border:1px solid #C3E6D8;float:right;" alt="" src="https://cdn.slidesharecdn.com/ss_thumbnails/invokeobfuscationderbycon2016-160926042615-thumbnail.jpg?width=120&height=120&fit=bounds" /> �ݺ�ߣs from DerbyCon 2016 presentation -- Invoke-Obfuscation: PowerShell obFUsk8tion Techniques & How To (Try To) D""e`Tec`T 'Th'+'em'

Invoke-Obfuscation DerbyCon 2016 from Daniel Bohannon

]]> 7331 5 https://cdn.slidesharecdn.com/ss_thumbnails/invokeobfuscationderbycon2016-160926042615-thumbnail.jpg?width=120&height=120&fit=bounds presentation Black http://activitystrea.ms/schema/1.0/post

http://activitystrea.ms/schema/1.0/posted

0 https://public.slidesharecdn.com/v2/images/profile-picture.png https://cdn.slidesharecdn.com/ss_thumbnails/pestersec-usingpesterscriptanalyzertodetectobfuscatedpowershell-190705174755-thumbnail.jpg?width=320&height=320&fit=bounds DanielBohannon2/pestersec-using-pester-scriptanalyzer-to-detect-obfuscated-powershell PesterSec: Using Peste... https://cdn.slidesharecdn.com/ss_thumbnails/maliciouspayloadsvsdeepvisibility-apowershellstory-sp4rkcon-190507203941-thumbnail.jpg?width=320&height=320&fit=bounds slideshow/malicious-payloads-vs-deep-visibility-a-powershell-story/144236365 Malicious Payloads vs ... https://cdn.slidesharecdn.com/ss_thumbnails/signaturesaredead-181008151108-thumbnail.jpg?width=320&height=320&fit=bounds slideshow/signaturesaredead-long-live-resilient-signatures/118702506 SignaturesAreDead Long...