Register now for our upcoming December Secure Code Summit! Register Here
Shopping Cart

No products in the cart.

Loading Events

« All Events

  • This event has passed.

Anti-Cast: WMI Abuse: How Threat Actors Use WMI with Gerard Johansen

January 17 @ 12:00 pm 1:00 pm EST

In this free one-hour Antisyphon Anti-Cast, Gerard Johansen, Principal Readiness Engineer for Red Canary and Antisyphon instructor, will run through how threat actors use the Windows Management Instrumentation (WMI) for Lateral Movement and Persistence.

Gerard will walk through how threat actors use WMI, what trace evidence is left and how to analyze WMI abuse.

Finally, Gerard will walk through some demonstrations using Atomic Red Team and forensic tools.

Chat with your fellow attendees in the Antisyphon Discord server:
https://discord.gg/antisyphon
in the #🍿anticasts-chat channel

Stay up to date on our upcoming live Anti-Casts and more at https://poweredbybhis.com