BEGIN:VCALENDAR PRODID:-//vBulletin 6//EN VERSION:2.0 CALSCALE:GREGORIAN BEGIN:VEVENT UID:d4ca6bb6-6792-4200-a479-693a492c8ef0 DTSTAMP:20260619T143145Z SUMMARY:Michael Solomon\, Michael Register - Digital Forensics and Incident Response Against the Digital... DESCRIPTION:Michael Solomon\, Michael Register - Digital Forensics and Inci dent Response Against the Digital Darkness: An Intro to Forensicating Evil \n\n\nTitle: Michael Solomon\, Michael Register - Digital Forensics and In cident Response Against the Digital Darkness: An Intro to Forensicating Ev il\n\nScheduled Date and Time (Pacific Standard): Saturday\, August 12\, 2 023\, at 1400 PDT\n\nEventBrite Link: https://www.eventbrite.com/e/michael -solomon-michael-register-an-intro-to-forensicating-evil-tickets-668399921 157?aff=oddtdtcreator\n\nMax Class Size: 80\n\n\n\n\nAbstract:\n\nAre you ready to step into the shoes of a cybersecurity or incident response analy st? Whether you're new to investigation or looking to take your analysis s kills to the next level\, we've got an exciting opportunity for you! Join mR_F0r3n51c5 and S3curityNerd for a four-hour class that will take you on a journey through the world of malware analysis and investigation.\n\nIn t oday's ever-evolving threat landscape\, malware continues to be a weapon o f choice for various types of threat actors. Our class leverages forensic and malware analysis fundamentals to teach students how to investigate a c ompromised Windows system. To ensure the most up-to-date learning experien ce\, the class authors have carefully selected fresh malware samples trend ing in 2023.\n\nBy the end of this class\, you'll have the skills to:\n\n · Build analysis skills that leverage complex scenarios and improve compr ehension\n\n· Practically acquire data in a forensically sound manner\n\n · Identify common areas of malware persistence\n\n· Gather evidence and create a timeline to characterize how the system was compromised\n\n· Par ticipate in a hand-to-keyboard combat capstone where you'll be given an im age of a compromised Windows system and demonstrate your newly acquired an alysis skills.\n\nDon't miss this opportunity to gain hands-on experience and take your analysis skills to the next level. Join us and discover the exciting world of forensic analysis and investigation!\n\n\n\n\nSkill Leve l: Intermediate\n\nPrerequisites for students:\n\n\n\n\nMaterials or Equip ment students will need to bring to participate:\n\n- Students will be req uired to download material (e.g.\, Virtual Machine). Students will be give n a URL for download access.\n\n- Regarding the downloaded virtual machine s\, these should be imported into your virtual machine software and ready before the start of class. If any additional technical support is needed\, the instructors will make themselves available online.\n\n- Students must have a laptop that meets the following requirements:\n\n- A 64-bit CPU ru nning at 2GHz or more. The students will be running one virtual machine on their host laptop.\n\n- Have the ability to update BIOS settings. Specifi cally\, enable virtualization technology such as "Intel-VT."\n\n- The stud ent must be able to access their system's BIOS if it is password protected . This is in case of changes being necessary.\n\n- 8 GB (Gigabytes) of RAM or higher\n\n- At least one open and working USB Type-A port\n\n- 50 Giga bytes of free hard drive space\, allowing you the ability to host the VMs we distribute\n\n- Students must have Local Administrator Access on their system.\n\n- Wireless 802.11 Capability\n\n- A host operating system that is running Windows 10+\, Linux\, or macOS 10.4 or later.\n\n- Virtualizati on software is required. The supplied VMs have been built for out-of-the-b ox comparability with VMWare Workstation or Player. Students may use other software if they choose\, but they may have to troubleshoot unpredictable issues. Instructors cannot guarantee compatibility with all virtualizatio n software suites.\n\nAt a minimum\, the following VM features will be nee ded:\n\n- NATted networking from VM to Internet\n\n- Copy and Paste of tex t and files between the Host machine and VM\n\n\n\n\n\nBios:\n\nMichael So lomon\, also known as mR_F0r3n51c5\, is a Threat Hunter with over 12 years of experience in Cyber Operations\, Digital Forensics & Incident Response (DFIR)\, and Threat Hunting. His passion lies in helping to shape the nex t generation of cybersecurity analysts for a safer tomorrow.\n\n\n\n\nMich ael Register\, known as S3curityNerd\, with 7 years of combined experience in IT\, Networking\, and Cybersecurity. He holds multiple certifications and actively conducts post-exploitation research to enhance threat hunting operations.\n\n\n\n​​ URL:https://forum.defcon.org/node/246016 DTSTART:20230812T220000Z DTEND:20230813T020001Z LOCATION:Las Vegas\, NV\, DEF CON 31 END:VEVENT END:VCALENDAR