Active Defense and Cyber Deception with John Strand

Active Defense & Cyber Deception w/ John Strand

Instructor: John Strand
Course Length: 16 Hours
Format: Live Online or On-Demand

Includes: 12 months of complimentary access to the Antisyphon Cyber Range, certificate of participation, six months access to class recordings.

View Live/Online Course Schedule
Register for On-Demand Training

Course Description

Active Defenses have been capturing a large amount of attention in the media lately. There are those who thirst for vengeance and want to directly attack the attackers. There are those who believe that any sort of active response directed at an attacker is wrong. We believe the answer is somewhere in between.

In this class, you will learn how to force an attacker to take more moves to attack your network. These moves may increase your ability to detect them. You will learn how to gain better attribution as to who is attacking you and why. You will also find out how to get access to a bad guy’s system. And most importantly, you will find out how to do the above legally.

The current threat landscape is shifting. Traditional defenses are failing us. We need to develop new strategies to defend ourselves. Even more importantly, we need to better understand who is attacking us and why. Some of the things we talk about you may implement immediately, others may take you a while to implement. Either way, consider what we discuss as a collection of tools at your disposal when you need them to annoy attackers, attribute who is attacking you, and finally, attack the attackers.

This class is based on the DARPA funded Active Defense Harbinger Distribution live Linux environment. This VM is built from the ground up for defenders to quickly implement Active Defenses in their environments. This class is also very heavy with hands-on labs. We will not just talk about Active Defenses. We will be doing hands-on labs and through them in a way that can be quickly and easily implemented in your environment.

Key Takeaways

  • Lots of open-source tools that can be freely and easily configured in your environment.
  • A better understanding of current legal landscapes.
  • An approach for developing enterprise integrations.
  • WHO SHOULD TAKE THIS COURSE
  • General security practitioners
  • Penetration testers
  • Ethical hackers
  • Web application developers
  • Website designers and architects

Audience Skill Level

ALL!

Student Requirements

  • x86-compatible or x64-compatible 2.0 GHz CPU minimum or higher
  • USB drive
  • 8 GB RAM or higher required
  • Wireless adapter
  • 40 GB available hard drive space
  • Windows 10

What Each Student Should Bring

A laptop and a smile!

    About Antisyphon Training Options

    Live Online

    Learn via live stream from instructors that are in the field utilizing the techniques they teach. Classes are split into four training days that are each four hours long. Live Online training includes six months access to dedicated class channels in the Antisyphon Discord server, six months access to live class recordings, a certificate of participation, and 12 months complimentary access to the Antisyphon Cyber Range.

    On-Demand

    Learn at your own pace with access to course content, lectures, and demos in the Antisyphon On-demand learning platform. Most courses are offered with lifetime access to the course and content updates. All On-demand courses include content update alerts, access to dedicated support channels in the Antisyphon Discord server, a certificate of participation, and 12 months complimentary access to the Antisyphon Cyber Range.

    Live Online w/ On-Demand Bundle

    This is the best of both worlds! Attend the live online class at its next scheduled interval and gain access to the online training modules in the Antisyphon On-demand training platform. Bundle also includes six months access to dedicated class channels in the Antisyphon Discord server, six months access to live class recordings, a certificate of participation, and 12 months complimentary access to the Antisyphon Cyber Range.

    Trainer & Author

    John Strand
    John Strand

    John has both consulted and taught hundreds of organizations in the areas of security, regulatory compliance, and penetration testing. He is a coveted speaker and much-loved SANS teacher. John is a contributor to the industry shaping Penetration Testing Execution Standard and 20 Critical Controls frameworks.

    Live Training Events

    May 8-11, 2023

    Monday:11:00 AM – 4:00 PM*
    Tuesday:12:00 PM – 4:00 PM
    Wednesday:12:00 PM – 4:00 PM
    Thursday:12:00 PM – 4:00 PM
    *Class time begins an hour early to set-up VMs and other resources.
    Register for Live Training