Beer-Talk: Men n' Machine - Leveraging automated tool to enhance manual analysis

Efficient cyber defence needs more automation. Thus, a myriad of tools gets released that promise to identify and prevent malicious code. Most tools do a great job to get repetitive and boring tasks done but most of the time they fail to give an immediate and complete picture of the threat. Unfortunately, criminals aim to exactly leverage these shortcomings for their gain.

 

Get to know the limits and how to thwart those. Join us on September 29th!

This Beer-Talk is divided in a technical presentation of 30 minutes with a snack to follow. The participation is free but a registration is necessary.
 

Topic


In this talk we will point out how to combine automated inspection tools and manual analysis to gain more insight into an actual threat. Thus, it will cover techniques used by criminals to bypass detection or complicate examination and how to not fall for these tricks.

The MITRE ATT&CK matrix "Defense Evasion" tactic is an extremely comprehensive listing of possible techniques that criminals apply, and we will provide practical and technical insight into some very popular techniques.

Christian Das Neves will apply and demonstrate both analysis approaches for a real piece of well-known malware and let you follow his judgments for the pros and cons of the analysis techniques. You may then understand that automated analysis tools are not a panacea, but just another weapon in a threat hunter's arsenal to be used wisely.

Moreover, we will discuss the steps an incident handler or forensic analyst can follow to fully eradicated the threat

 

Speaker


Christian Das Neves has been working at Compass Security as an IT Security Analyst since 2021. Before that he completed his studies in computer science at the University of Applied Sciences Bern (BFH) and worked four years at the Swiss military CERT as a DFIR analyst. 

His responsibilities include penetration testing of applications, services, or internal and external networks. Furthermore, Christian engages in red teaming, incident response, digital forensics, malware analysis and masters the art of reverse engineering

 

Date/Location


Take the chance to visit us in our new office in Zurich. 

Thursday, September 29, 2022 / 5.30 pm (doors open at 5 pm)

Compass Security Schweiz AG
Josefstrasse 53 (4th level)
8005 Zürich 

 

Registration


Come by, enjoy the talk, a cold beer, and the free snack.

  • The participation is free but a registration is necessary.
  • The number of places is limited. Registrations will be considered in the order in which they are received.

Registration deadline: Thursday, September 22, 2022, 4 pm 

You will receive a confirmation by email after registration. 

 

Register now