Abstract image of a woman sitting on books and studying on a laptop

Practical Cyber Defense

Paul Dutot IEng MIET MBCS CITP OSCP CSTM, profile picture
Paul Dutot IEng MIET MBCS CITP OSCP CSTM

The document outlines the practical aspects of cyber defense, emphasizing the need for organizations to prepare for attacks with staged approaches. It covers concepts such as reconnaissance, security awareness, and the importance of security measures like antivirus and SIEM systems. Additionally, it provides various resources for further learning and implementation in organizational cybersecurity strategies.

InternetTechnologyBusiness
1 of 19
Downloaded 27 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
Practical CyberDefense By Paul Dutot
About me ● Co Founder of the CIISF Practical CyberDefense ● Employed as an Ethical Security Consultant @ Logicalis Jersey ● Practice Offensive & Defensive Security for businesses at all verticals
Agenda ● Concepts I and II Practical CyberDefense ● Stages 1-5 of a practical Cyber Defense with more demo's ● Resources Questions at the end please ● Reverse & Bind Shells Demo
Concepts I “Attackers have months to prepare, defenders have minutes to react” Practical CyberDefense “This is not a security control !!!!” vs
Concepts II “Security is a journey” Practical CyberDefense “What are the bad guys trying to achieve?
Reverse & Bind Shells Practical CyberDefense Demo
Stage 1 – Buy In ● Appoint a 'Cyber' champion ● 'C' level Buy In ● Maintain a 'Cyber' risk register Practical CyberDefense ● Do Security Awareness
Stage 2 - Reconnaisance Some Forgotten Ones Practical CyberDefense Demo
Reconnaisance Aims Practical CyberDefense ● To profile your organsiation ● In preparation for social enginering attacks and or email phishing
Reconnaisance - Mitigation Practical CyberDefense ● Undertake reconnaisance to find public information ● Mitigate risk by takedown and creating contray information ● Test your defenses and train your users
Phishing is a big deal !!! Practical CyberDefense
Stage 3 – Understanding AV Is AV really protecting us - the case for and against Practical CyberDefense
Stage 3 – AV Bypass Demo - The case against Practical CyberDefense
Stage 3 – The case for We still need AV to protect us ! Practical CyberDefense
Stage 4 – Think outside the box ● Databases – They are the end game Practical CyberDefense ● Web applications – Owasp Top 10 ● UC Communications – TDos / Toll Fraud ● Data Encryption – Laptops / Desktops / Databases
Stage 5 – It's not if but when SIEM – Security, Information& Event Monitoring Practical CyberDefense
Stage 5 – SIEM OSSIM SIEM – Free open Source SIEM Demo Practical CyberDefense
Resources Florida State ● http://www.cs.fsu.edu/~redwood/OffensiveSecurity/ Practical CyberDefense SANS Institute ● http://www.sans.org/critical-security-controls/controls/ OWASP Top 10 - 2013 ● https://www.owasp.org/index.php/Top_10_2013-Top_10
Thank you – Any Questions? Blog – http://cyberkryption.com Practical CyberDefense @cyberkryption paul.dutot@je.logicalis.com

More Related Content

PDF
The Risks of YOLOing-2.pdf
Hacken
 
PPTX
Incident response : the good the bad and the ugly or how to keep your face af...
theAluc
 
PPTX
Staying Safe Online for HR Professionals
Ben Woelk, CISSP, CPTC
 
PDF
N. Oskina, G. Asproni - Be your own Threatbuster! - Codemotion Milan 2018
Codemotion
 
ODP
A journey through an INFOSEC labyrinth
Avădănei Andrei
 
PPT
Virus Precautions
Bilal Arif
 
PPT
How you can become a hacker with no security experience
Avădănei Andrei
 
ZIP
Protecting Public Hotspots
Alex Payne
 
The Risks of YOLOing-2.pdf
Hacken
 
Incident response : the good the bad and the ugly or how to keep your face af...
theAluc
 
Staying Safe Online for HR Professionals
Ben Woelk, CISSP, CPTC
 
N. Oskina, G. Asproni - Be your own Threatbuster! - Codemotion Milan 2018
Codemotion
 
A journey through an INFOSEC labyrinth
Avădănei Andrei
 
Virus Precautions
Bilal Arif
 
How you can become a hacker with no security experience
Avădănei Andrei
 
Protecting Public Hotspots
Alex Payne
 

Viewers also liked (20)

PDF
A Threat Hunter Himself
Teymur Kheirkhabarov
 
PPTX
44CON London 2015: NTFS Analysis with PowerForensics
Jared Atkinson
 
PPTX
Hunting: Defense Against The Dark Arts - BSides Philadelphia - 2016
Danny Akacki
 
PDF
Luncheon 2016-07-16 - Topic 2 - Advanced Threat Hunting by Justin Falck
North Texas Chapter of the ISSA
 
PPTX
Hunting on the cheap
Anjum Ahuja
 
PPTX
Building a Successful Threat Hunting Program
Carl C. Manion
 
PDF
CrowdCasts Monthly: Going Beyond the Indicator
CrowdStrike
 
PDF
Blue team reboot - HackFest
Haydn Johnson
 
PPTX
BSidesDC - **** it, Do It Live (PowerShell Digital Forensics)
Jared Atkinson
 
PDF
Workshop threat-hunting
Tripwire
 
PPTX
SOC2016 - The Investigation Labyrinth
chrissanders88
 
PDF
Building an Analytics Enables SOC
Splunk
 
PDF
Threat Hunting Workshop
Splunk
 
PPTX
PowerShell for Penetration Testers
Nikhil Mittal
 
PPTX
I hunt sys admins 2.0
Will Schroeder
 
PPTX
Building an Empire with PowerShell
Will Schroeder
 
PPTX
Lateral Movement with PowerShell
kieranjacobsen
 
PPTX
The Travelling Pentester: Diaries of the Shortest Path to Compromise
Will Schroeder
 
PDF
Threat Hunting with Splunk
Splunk
 
PPTX
Abstract Tools for Effective Threat Hunting
chrissanders88
 
A Threat Hunter Himself
Teymur Kheirkhabarov
 
44CON London 2015: NTFS Analysis with PowerForensics
Jared Atkinson
 
Hunting: Defense Against The Dark Arts - BSides Philadelphia - 2016
Danny Akacki
 
Luncheon 2016-07-16 - Topic 2 - Advanced Threat Hunting by Justin Falck
North Texas Chapter of the ISSA
 
Hunting on the cheap
Anjum Ahuja
 
Building a Successful Threat Hunting Program
Carl C. Manion
 
CrowdCasts Monthly: Going Beyond the Indicator
CrowdStrike
 
Blue team reboot - HackFest
Haydn Johnson
 
BSidesDC - **** it, Do It Live (PowerShell Digital Forensics)
Jared Atkinson
 
Workshop threat-hunting
Tripwire
 
SOC2016 - The Investigation Labyrinth
chrissanders88
 
Building an Analytics Enables SOC
Splunk
 
Threat Hunting Workshop
Splunk
 
PowerShell for Penetration Testers
Nikhil Mittal
 
I hunt sys admins 2.0
Will Schroeder
 
Building an Empire with PowerShell
Will Schroeder
 
Lateral Movement with PowerShell
kieranjacobsen
 
The Travelling Pentester: Diaries of the Shortest Path to Compromise
Will Schroeder
 
Threat Hunting with Splunk
Splunk
 
Abstract Tools for Effective Threat Hunting
chrissanders88
 
Ad

Similar to Practical Cyber Defense (20)

PDF
Year Zero
leifdreizler
 
PDF
2020 FRsecure CISSP Mentor Program - Class 1
FRSecure
 
PDF
OISF - Continuous Skills Improvement for Everyone
ThreatReel Podcast
 
PPTX
APT Event - New York
Prof John Walker FRSA Purveyor Dark Intelligence
 
PDF
Cybersecurity for Your Law Firm: Data Security and Data Encryption
Shawn Tuma
 
PDF
CyberSecurity Consultancy asdddddddddddd
Yuvraj118Sharma055
 
PDF
Glasswall - How to Prevent, Detect and React to Ransomware incidents
Dinis Cruz
 
PPTX
Protecting endpoints from targeted attacks
AppSense
 
PPTX
Cyber Frontline - Level 1 - Module 1.pptx
trevor501353
 
PPTX
Keynote Information Security days Luxembourg 2015
Claus Cramon Houmann
 
PDF
Small Business Administration Recommendations
Meg Weber
 
PDF
CSA Raleigh application security and deception in the cloud
Phillip Maddux
 
PPTX
You Will Be Breached
Mike Saunders
 
PPTX
Cyber RM - Controls - Module 9 Powerpoint Presentation
trevor501353
 
DOCX
Current Article Review1. Locate a current article about Regul.docx
annettsparrow
 
PPTX
12 Crucial Windows Security Skills for 2017
Paula Januszkiewicz
 
PPTX
Security Champions - Introduce them in your Organisation
Ives Laaf
 
PDF
2019 FRSecure CISSP Mentor Program: Class Ten
FRSecure
 
PPT
Intro to-ssdl--lone-star-php-2013
nanderoo
 
PPTX
Information Security Awareness Session -2020
Ismail Oduoye CISSP,CISA, CCNP-ROUTE,CCNA, MCITP,MCTS
 
Year Zero
leifdreizler
 
2020 FRsecure CISSP Mentor Program - Class 1
FRSecure
 
OISF - Continuous Skills Improvement for Everyone
ThreatReel Podcast
 
APT Event - New York
Prof John Walker FRSA Purveyor Dark Intelligence
 
Cybersecurity for Your Law Firm: Data Security and Data Encryption
Shawn Tuma
 
CyberSecurity Consultancy asdddddddddddd
Yuvraj118Sharma055
 
Glasswall - How to Prevent, Detect and React to Ransomware incidents
Dinis Cruz
 
Protecting endpoints from targeted attacks
AppSense
 
Cyber Frontline - Level 1 - Module 1.pptx
trevor501353
 
Keynote Information Security days Luxembourg 2015
Claus Cramon Houmann
 
Small Business Administration Recommendations
Meg Weber
 
CSA Raleigh application security and deception in the cloud
Phillip Maddux
 
You Will Be Breached
Mike Saunders
 
Cyber RM - Controls - Module 9 Powerpoint Presentation
trevor501353
 
Current Article Review1. Locate a current article about Regul.docx
annettsparrow
 
12 Crucial Windows Security Skills for 2017
Paula Januszkiewicz
 
Security Champions - Introduce them in your Organisation
Ives Laaf
 
2019 FRSecure CISSP Mentor Program: Class Ten
FRSecure
 
Intro to-ssdl--lone-star-php-2013
nanderoo
 
Information Security Awareness Session -2020
Ismail Oduoye CISSP,CISA, CCNP-ROUTE,CCNA, MCITP,MCTS
 
Ad

More from Paul Dutot IEng MIET MBCS CITP OSCP CSTM (10)

PPTX
Welcome to the #WannaCry Wine Club
Paul Dutot IEng MIET MBCS CITP OSCP CSTM
 
PPTX
Scanning Channel Islands Cyberspace
Paul Dutot IEng MIET MBCS CITP OSCP CSTM
 
PPTX
Incident Response in the wake of Dear CEO
Paul Dutot IEng MIET MBCS CITP OSCP CSTM
 
PDF
Logicalis Security Conference
Paul Dutot IEng MIET MBCS CITP OSCP CSTM
 
PDF
Letter anonymous-II
Paul Dutot IEng MIET MBCS CITP OSCP CSTM
 
ODP
Exploiting buffer overflows
Paul Dutot IEng MIET MBCS CITP OSCP CSTM
 
ODP
A Letter from Anonymous to the Jersey Finance Industry
Paul Dutot IEng MIET MBCS CITP OSCP CSTM
 
PDF
Infosec lecture-final
Paul Dutot IEng MIET MBCS CITP OSCP CSTM
 
PDF
Path to Surfdroid
Paul Dutot IEng MIET MBCS CITP OSCP CSTM
 
PDF
WI-FI Security in Jersey 2011
Paul Dutot IEng MIET MBCS CITP OSCP CSTM
 
Welcome to the #WannaCry Wine Club
Paul Dutot IEng MIET MBCS CITP OSCP CSTM
 
Scanning Channel Islands Cyberspace
Paul Dutot IEng MIET MBCS CITP OSCP CSTM
 
Incident Response in the wake of Dear CEO
Paul Dutot IEng MIET MBCS CITP OSCP CSTM
 
Logicalis Security Conference
Paul Dutot IEng MIET MBCS CITP OSCP CSTM
 
Letter anonymous-II
Paul Dutot IEng MIET MBCS CITP OSCP CSTM
 
Exploiting buffer overflows
Paul Dutot IEng MIET MBCS CITP OSCP CSTM
 
A Letter from Anonymous to the Jersey Finance Industry
Paul Dutot IEng MIET MBCS CITP OSCP CSTM
 
Infosec lecture-final
Paul Dutot IEng MIET MBCS CITP OSCP CSTM
 
Path to Surfdroid
Paul Dutot IEng MIET MBCS CITP OSCP CSTM
 
WI-FI Security in Jersey 2011
Paul Dutot IEng MIET MBCS CITP OSCP CSTM
 

Recently uploaded (20)

PPT
Ethics in Information System - Management Information System
faizhossain3
 
PPTX
Reading as a good Form of Recreation
Raj Kumble
 
PDF
Alethe Consulting Corporate Profile and Solution Aproach
debashisrakshit2025
 
PDF
Session 1 (Week 1)fghjmgfdsfgthyjkhfdsadfghjkhgfdsa
ssuser25df8b
 
PPTX
Introduction to cybersecurity and digital nettiquette
shanefrancisjavier21
 
PPTX
curriculumandpedagogyinearlychildhoodcurriculum-171021103104 - Copy.pptx
HeneszaAvenido1
 
PDF
mera desh ae watn.(a source of motivation and patriotism to the youth of the ...
DtMalhonSharma
 
PDF
The Ikigai Template _ Recalibrate How You Spend Your Time.pdf
KinchitJain2
 
PPTX
Mathew Digital SEO Checklist Guidlines 2025
Mathew Digital
 
PDF
Containerization lab dddddddddddddddmanual.pdf
muler161921
 
PPT
FIRE PREVENTION AND CONTROL PLAN- LUS.FM.MQ.OM.UTM.PLN.00014.ppt
MelwinPaul6
 
PDF
Alethe Consulting Corporate Profile and Solution Aproach
debashisrakshit2025
 
PDF
si manuel quezon at mga nagawa sa bansang pilipinas
LizaDeVeraFloresLaya
 
PPTX
Internet Safety for Seniors presentation
mwnorman1
 
PPTX
module 1-Part 1.pptxdddddddddddddddddddddddddddddddddddd
KevinSeelu
 
PPTX
AI_Cyberattack_Solutions AI AI AI AI .pptx
zayadeen2003
 
PPTX
newyork.pptxirantrafgshenepalchinachinane
PrashantKoirala12
 
PPTX
Database Information System - Management Information System
faizhossain3
 
PDF
Top 8 Trusted Sources to Buy Verified Cash App Accounts.pdf
How To Buy Verified Cash App Accounts
 
PDF
Course Overview and Agenda cloud security
ElsayedKowaydeh
 
Ethics in Information System - Management Information System
faizhossain3
 
Reading as a good Form of Recreation
Raj Kumble
 
Alethe Consulting Corporate Profile and Solution Aproach
debashisrakshit2025
 
Session 1 (Week 1)fghjmgfdsfgthyjkhfdsadfghjkhgfdsa
ssuser25df8b
 
Introduction to cybersecurity and digital nettiquette
shanefrancisjavier21
 
curriculumandpedagogyinearlychildhoodcurriculum-171021103104 - Copy.pptx
HeneszaAvenido1
 
mera desh ae watn.(a source of motivation and patriotism to the youth of the ...
DtMalhonSharma
 
The Ikigai Template _ Recalibrate How You Spend Your Time.pdf
KinchitJain2
 
Mathew Digital SEO Checklist Guidlines 2025
Mathew Digital
 
Containerization lab dddddddddddddddmanual.pdf
muler161921
 
FIRE PREVENTION AND CONTROL PLAN- LUS.FM.MQ.OM.UTM.PLN.00014.ppt
MelwinPaul6
 
Alethe Consulting Corporate Profile and Solution Aproach
debashisrakshit2025
 
si manuel quezon at mga nagawa sa bansang pilipinas
LizaDeVeraFloresLaya
 
Internet Safety for Seniors presentation
mwnorman1
 
module 1-Part 1.pptxdddddddddddddddddddddddddddddddddddd
KevinSeelu
 
AI_Cyberattack_Solutions AI AI AI AI .pptx
zayadeen2003
 
newyork.pptxirantrafgshenepalchinachinane
PrashantKoirala12
 
Database Information System - Management Information System
faizhossain3
 
Top 8 Trusted Sources to Buy Verified Cash App Accounts.pdf
How To Buy Verified Cash App Accounts
 
Course Overview and Agenda cloud security
ElsayedKowaydeh
 

Practical Cyber Defense

  • 2. About me ● Co Founder of the CIISF Practical CyberDefense ● Employed as an Ethical Security Consultant @ Logicalis Jersey ● Practice Offensive & Defensive Security for businesses at all verticals
  • 3. Agenda ● Concepts I and II Practical CyberDefense ● Stages 1-5 of a practical Cyber Defense with more demo's ● Resources Questions at the end please ● Reverse & Bind Shells Demo
  • 4. Concepts I “Attackers have months to prepare, defenders have minutes to react” Practical CyberDefense “This is not a security control !!!!” vs
  • 5. Concepts II “Security is a journey” Practical CyberDefense “What are the bad guys trying to achieve?
  • 6. Reverse & Bind Shells Practical CyberDefense Demo
  • 7. Stage 1 – Buy In ● Appoint a 'Cyber' champion ● 'C' level Buy In ● Maintain a 'Cyber' risk register Practical CyberDefense ● Do Security Awareness
  • 8. Stage 2 - Reconnaisance Some Forgotten Ones Practical CyberDefense Demo
  • 9. Reconnaisance Aims Practical CyberDefense ● To profile your organsiation ● In preparation for social enginering attacks and or email phishing
  • 10. Reconnaisance - Mitigation Practical CyberDefense ● Undertake reconnaisance to find public information ● Mitigate risk by takedown and creating contray information ● Test your defenses and train your users
  • 11. Phishing is a big deal !!! Practical CyberDefense
  • 12. Stage 3 – Understanding AV Is AV really protecting us - the case for and against Practical CyberDefense
  • 13. Stage 3 – AV Bypass Demo - The case against Practical CyberDefense
  • 14. Stage 3 – The case for We still need AV to protect us ! Practical CyberDefense
  • 15. Stage 4 – Think outside the box ● Databases – They are the end game Practical CyberDefense ● Web applications – Owasp Top 10 ● UC Communications – TDos / Toll Fraud ● Data Encryption – Laptops / Desktops / Databases
  • 16. Stage 5 – It's not if but when SIEM – Security, Information& Event Monitoring Practical CyberDefense
  • 17. Stage 5 – SIEM OSSIM SIEM – Free open Source SIEM Demo Practical CyberDefense
  • 18. Resources Florida State ● http://www.cs.fsu.edu/~redwood/OffensiveSecurity/ Practical CyberDefense SANS Institute ● http://www.sans.org/critical-security-controls/controls/ OWASP Top 10 - 2013 ● https://www.owasp.org/index.php/Top_10_2013-Top_10
  • 19. Thank you – Any Questions? Blog – http://cyberkryption.com Practical CyberDefense @cyberkryption paul.dutot@je.logicalis.com