Anti-Cast: Investigating Nix Endpoints for Incident Response with Patterson Cake

How many endpoint Operating Systems are there?

SPOILER alert – the answer is two!

Join Patterson Cake, Director of Incident Response at Black Hills Infosec, as he guides through his “rapid endpoint investigations” workflow for the “other” (not Windows) Operating System…*Nix (Linux/Mac).

We’ll learn how to select, acquire, and analyze Linux and Mac investigative artifacts, using Velociraptor offline collector, CatScale, and UAC scripts.

Windows gets a lot of attention and rightfully so!

However, Linux and Mac are part of every enterprise ecosystem and represent a critical attack surface. You need a simple, effective, repeatable plan for investigating these endpoints.

Join us for PreShow Banter™ at 11:30 AM ET

Chat with your fellow attendees in the BHIS Discord server:
https://discord.gg/bhis 
in the #🔴live-chat channel

Stay up to date on our upcoming live Anti-Casts and more at https://poweredbybhis.com

Don’t forget to check out our Course Catalog for our upcoming free and affordable cybersecurity training!