0% found this document useful (0 votes)

37 views22 pages

Combating Exploit Kits m11 Slides PDF

The document discusses customizing cybersecurity reports for different audiences, specifically from a researcher's perspective to a Chief Information Security Officer (CISO). It covers topics such as reporting data, findings, and remediation plans, along with the importance of actionable insights. Additionally, it touches on malware analysis and the need for effective communication of technical details.

Uploaded by

Abdul Qadeer

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

37 views22 pages

Combating Exploit Kits m11 Slides PDF

Uploaded by

Abdul Qadeer

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PDF, TXT or read online on Scribd

You are on page 1/ 22

Customizing Reports: Researcher to

CISO

Dr. Jared DeMott

SECURITY RESEARCHER AND ENGINEER

@jareddemott www.vdalabs.com
Overview
Recap
Reporting
- Data
- Written
Tesla fix?
- Yes, for versions 1-2
- 3-4, not so much
• Key destroyed in memory
§ Kept on the server side and
delivered only after payment
Common malware
A next-gen endpoint protection platform
Initial infection vector
Deobfuscation
Dynamic and static analysis
Reporting
Report Findings
High level summary
Technical details
Remediation plan
Attribution?
- Five W’s
Actionable?
Integrate into
security controls
Search (IR)
https://www.us-cert.gov/Information-Sharing-Specifications-Cybersecurity
Summary
Finished filling in the malware template
- Place it where?

Penetration Testing Report Template
No ratings yet
Penetration Testing Report Template
9 pages
Cybersecurity Audit Report (Prototype)
No ratings yet
Cybersecurity Audit Report (Prototype)
17 pages
Tech Security Project Report 2024
No ratings yet
Tech Security Project Report 2024
49 pages
Malware Dũng Ngân Uy
No ratings yet
Malware Dũng Ngân Uy
21 pages
Software Security
No ratings yet
Software Security
42 pages
Term Paper - MIS 480N - 580N
No ratings yet
Term Paper - MIS 480N - 580N
5 pages
P.vinod - Cyb - PDF1
No ratings yet
P.vinod - Cyb - PDF1
32 pages
Extra Credit Lab
No ratings yet
Extra Credit Lab
5 pages
Security Report Summary - June 2012
No ratings yet
Security Report Summary - June 2012
2 pages
Module 8 Part 2
No ratings yet
Module 8 Part 2
41 pages
Introduction To Cybersecurity
No ratings yet
Introduction To Cybersecurity
11 pages
Network Security Audit Guide
100% (2)
Network Security Audit Guide
2 pages
DVP Report
No ratings yet
DVP Report
14 pages
Tenable Lab Guide
100% (1)
Tenable Lab Guide
49 pages
Eforensics 02 2015 150
100% (1)
Eforensics 02 2015 150
84 pages
Advanced Cybersecurity Threat Analysis
No ratings yet
Advanced Cybersecurity Threat Analysis
72 pages
Additional Security Engineer Materials
No ratings yet
Additional Security Engineer Materials
230 pages
Questions
No ratings yet
Questions
2 pages
Killer Pentest
No ratings yet
Killer Pentest
27 pages
Mtcse Training Materials PDF
75% (4)
Mtcse Training Materials PDF
271 pages
BlueTeam 101
No ratings yet
BlueTeam 101
39 pages
Cybersecurity Exercise
No ratings yet
Cybersecurity Exercise
5 pages
Malware Report Template
100% (1)
Malware Report Template
3 pages
Cyber - Student
No ratings yet
Cyber - Student
7 pages
Towards Safeguarding Users Against Phishing and Ransomware Attack
No ratings yet
Towards Safeguarding Users Against Phishing and Ransomware Attack
229 pages
Task 3
No ratings yet
Task 3
2 pages
Submitted To Submitted by Hardik Choudhary 20EJDAI020 Department of Technology JIET, Jodhpur
No ratings yet
Submitted To Submitted by Hardik Choudhary 20EJDAI020 Department of Technology JIET, Jodhpur
22 pages
Module V
No ratings yet
Module V
30 pages
Unit 2-DIS
No ratings yet
Unit 2-DIS
19 pages
Seminary Ash Final
No ratings yet
Seminary Ash Final
15 pages
SYH Profile
No ratings yet
SYH Profile
18 pages
Introduction to Cybersecurity Basics
No ratings yet
Introduction to Cybersecurity Basics
11 pages
Final Learning Journal
No ratings yet
Final Learning Journal
31 pages
Digital Security Assessment Report
No ratings yet
Digital Security Assessment Report
3 pages
HE186526 VuMinhQuan Lab05
No ratings yet
HE186526 VuMinhQuan Lab05
7 pages
Cybersecurity Journey of Aleksandar
No ratings yet
Cybersecurity Journey of Aleksandar
7 pages
Resume Example
No ratings yet
Resume Example
1 page
A4 Assessment Specifications (2024 S1)
No ratings yet
A4 Assessment Specifications (2024 S1)
8 pages
Basics Threat Crypto
No ratings yet
Basics Threat Crypto
121 pages
HP SM
No ratings yet
HP SM
46 pages
24 0905 KillerPentest
No ratings yet
24 0905 KillerPentest
27 pages
Ethical Hacking: Vulnerability Guide
No ratings yet
Ethical Hacking: Vulnerability Guide
5 pages
Physical Security
No ratings yet
Physical Security
7 pages
Introduction To Defensive Security
No ratings yet
Introduction To Defensive Security
15 pages
Report Vulnerability Template
No ratings yet
Report Vulnerability Template
23 pages
Vulnerability Management Lifecycle
No ratings yet
Vulnerability Management Lifecycle
8 pages
ThreatModeling Justin
No ratings yet
ThreatModeling Justin
46 pages
IT Security in Hybrid Education
No ratings yet
IT Security in Hybrid Education
20 pages
24.1.4 Lab - Evaluate Cybersecurity Reports Objectives: Prepared By: ID: Faculty: Major: Assessed by
No ratings yet
24.1.4 Lab - Evaluate Cybersecurity Reports Objectives: Prepared By: ID: Faculty: Major: Assessed by
7 pages
Pre-Activity 1.1 Study The Security Trends and Write A Note On It
No ratings yet
Pre-Activity 1.1 Study The Security Trends and Write A Note On It
2 pages
Lab 5 Identifiying Threats Vulnerabilities and Exploits
No ratings yet
Lab 5 Identifiying Threats Vulnerabilities and Exploits
5 pages
G 10 Chapter 5&6
No ratings yet
G 10 Chapter 5&6
55 pages
Data Security and Integrity Essentials
No ratings yet
Data Security and Integrity Essentials
18 pages
Web Vulnerability Scanner
No ratings yet
Web Vulnerability Scanner
10 pages
Advanced Cyber Threat Intelligence ReportTemplate (1) Section1
No ratings yet
Advanced Cyber Threat Intelligence ReportTemplate (1) Section1
10 pages
2022 Network Threat Trends Report
No ratings yet
2022 Network Threat Trends Report
24 pages
LoveLetter Attack: A Social Engineering Case
No ratings yet
LoveLetter Attack: A Social Engineering Case
6 pages
Musa
No ratings yet
Musa
41 pages
TaHiTI: Methodology for Cybersecurity Experts
No ratings yet
TaHiTI: Methodology for Cybersecurity Experts
11 pages
SYBCA Relational Database Question Bank
No ratings yet
SYBCA Relational Database Question Bank
9 pages
CEHv10 CaseStudy
No ratings yet
CEHv10 CaseStudy
9 pages
Lesson1:Introduction: 1.1 A Brief Description of Visual Basic
No ratings yet
Lesson1:Introduction: 1.1 A Brief Description of Visual Basic
64 pages

Combating Exploit Kits m11 Slides PDF

Uploaded by

Combating Exploit Kits m11 Slides PDF

Uploaded by

Customizing Reports: Researcher to

Dr. Jared DeMott

You might also like