08448380779 Call Girls In Civil Lines Women Seeking Men
Next Generation War: EDR vs RED TEAM
1. WHOAMI
Halil Dalabasmaz
Red Team Leader
Developer of Phant0m, wildPWN, SpookFlare
C|EH, OSCP, OSWP, OSCE, eWPT, eWPTX
artofpwn.com
twitter: @hlldz | github: @hlldz
2.
3.
4. EDR
• Endpoint Detection and Response
• This solutions are designed to continuously monitor and respond to threats. They do this
by installing agents or sensors on the endpoints, which collect and send behavioral
data to a central database for analysis.
20. DO IT THE HARD WAY
• ver
• systeminfo
• tasklist
• tasklist /M
• tasklist /V
• net accounts
• net user
• net user Administrator
• net localgroup
• net localgroup Administrators
• net accounts /domain
• net group /domain
• net group "Domain Computers" /domain
• net group "Domain Controllers" /domain
• net group "Domain Admins" /domain
• net group "Domain Policy Creator Owners" /domain
• ipconfig
• ipconfig /all
• whoami
• whoami /priv
21. DO IT THE HARD WAY
• Netapi32.lib
• Netapi32.dll
• NetUserEnum()
• NetUserGetInfo()
• NetUserGetLocalGroups()
• DsGetDcName()
• Advapi32.lib
• Advapi32.dll
• RegGetValueA()
• Activeds.lib
• Activeds.dll
• ADsOpenObject()