beacon Archives - Jean-Christoph von Oertzen https://jeanchristophvonoertzen.com/tag/beacon Exploring the intersection of cybersecurity, psychology, and resilience. Tue, 15 Mar 2022 19:22:57 +0000 en-US hourly 1 https://wordpress.org/?v=6.9.4 https://jeanchristophvonoertzen.com/wp-content/uploads/2020/10/favicon-4.png beacon Archives - Jean-Christoph von Oertzen https://jeanchristophvonoertzen.com/tag/beacon 32 32 Webinar takeaway – The Ins and Outs of RITA https://jeanchristophvonoertzen.com/webinar-takeaway-the-ins-and-outs-of-rita https://jeanchristophvonoertzen.com/webinar-takeaway-the-ins-and-outs-of-rita#respond Tue, 15 Mar 2022 19:21:55 +0000 https://jeanchristophvonoertzen.com/?p=946 My key takeaways RITA is made to detect beacons and long connections open source tool Signature based detection of malicious code is outdated Average detect time is over 6 month > 50% of compromised systems are detected by outsiders RITA is behaviour based Needs a bunch of pakets to work on min 1h, default 24h […]

The post Webinar takeaway – The Ins and Outs of RITA appeared first on Jean-Christoph von Oertzen.

]]> https://jeanchristophvonoertzen.com/webinar-takeaway-the-ins-and-outs-of-rita/feed 0 Webinar takeaway – Malware of the Day https://jeanchristophvonoertzen.com/webinar-takeaway-malware-of-the-day https://jeanchristophvonoertzen.com/webinar-takeaway-malware-of-the-day#respond Wed, 02 Mar 2022 20:27:33 +0000 https://jeanchristophvonoertzen.com/?p=875 My key takeaways "Malware of the Day" is about simulating one malware or exploit that was found "in the wild" why? to share with the public so that we can test our security detection abilities in place sharing (safe) PCAPs with identified C2 methods and network traffic patterns smoke detectors are not build to prevent […]

The post Webinar takeaway – Malware of the Day appeared first on Jean-Christoph von Oertzen.

]]> https://jeanchristophvonoertzen.com/webinar-takeaway-malware-of-the-day/feed 0