Name: Catching Linux Post-Exploitation with Auditd
Start: 2015-08-04T15:00:00-0700
End: 2015-08-04T15:25:00-0700

Back To Schedule

Catching Linux Post-Exploitation with Auditd

Many Linux administrators are required to deploy Auditd in order to meet government or industry security compliance requirements. In this talk we will dive into common Linux Audit configurations and determine their value when responding to successful attacks. Finally by examining real world attacks, we can create Auditd rules that can alert us following the successful exploitation of a service.

Speakers

Eric Gershman

Eric Gershman is currently working on the security team for a group that manages large systems that enable researchers to do "Big Science". Prior to working in security Eric pursued a bachelors degree in Information Technology at the University of Central Florida. During his time... Read More →

Tuesday August 4, 2015 15:00 - 15:25 PDT
Proving Ground Florentine E

Proving Ground

BSidesLV 2015

Eric Gershman

Attendees (0)

BSidesLV 2015

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Eric Gershman

Attendees (0)