Cyber Security Engineer - Solarisbank AG
Sabajete Elezaj, aka “Sabi” is a Cyber Security Engineer with several years of industry experience in identifying security threats and implementing successful enterprise level measures for protection. Sabi has several security certifications up her sleeve, but believes one learns by doing. She holds a master's degree from the University of Tirana in Information Security and has been a moderator for the Albanian grass/root ethical infosec community since 2020.
14:45 - 15:15
21 May 2022 - 09:00 BSides Tirana 2022 - Schedule
Uncovering Offensive TTPs: IOC What You're Doing
It is not rare that attackers can gain access to a target victim’s infrastructure. The “Assume Breach” mentality shifts defenders’ focus from initial access to later stages of the attack lifecycle. To better understand these post-exploitation activities (privilege escalation, lateral movement, etc.) security teams can map attacker TTP’s (Tactics, Techniques & Procedures) to corresponding artifacts for defensive purposes. This session will demonstrate this offensive and defensive mapping by performing a given realistic attack and investigating the results to describe the attacker behavior through IOC’s (Indicators of Compromise).