From the course: Ethical Hacking: Introduction to Ethical Hacking
Join today to access over 23,200 courses taught by industry experts.
Discovering indicators of compromise
From the course: Ethical Hacking: Introduction to Ethical Hacking
Discovering indicators of compromise
- [Instructor] Indicators of compromise or IoCs represents forensic evidence that a cyber threat may have infiltrated a system. In this segment, we'll review some categories of IoCs along with viewing an example using Wireshark. IoCs can be grouped according to the type of indicators the evidence represents. Let's talk about some of the types of IoCs. You might see file-based indicators and these are associated with known malicious files. For instance, a hash, file name or other artifacts, such as email addresses, registry keys, or configuration files. Network-oriented indicators include IP addresses, domain names, or URLs that are related to malicious sites, such as malware or phishing sites. You could also see behavioral indicators. Now, these are signatures related to unusual or suspicious behavior on a system or network, such as excessive network traffic. IoC artifacts enable the security professionals to piece…
Practice while you learn with exercise files
Download the files the instructor uses to teach the course. Follow along and learn by watching, listening and practicing.
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.
Contents
-
-
-
-
-
Understanding the cyber kill chain4m 48s
-
(Locked)
Utilizing MITRE ATT&CK3m 40s
-
(Locked)
Analyzing using the diamond model4m 41s
-
(Locked)
Identifying adversary behavior4m 21s
-
(Locked)
Discovering indicators of compromise4m 32s
-
(Locked)
Challenge: The cyber kill chain1m 22s
-
(Locked)
Solution: The cyber kill chain2m 33s
-
-
-
-