b'
In this segment we welcome Carlos Perez back to the show! Carlos will discuss methods we can use to hide one systems and cover our tracks.
We\'ll cover how on a system (as administrator) the blue team\'s struggle using default logs or even on a default install of Sysmon to detect an attacker. Attackers can selectively disable modern event log providers, take action and then re-enable. We will demo this and how to best monitor for this technique.
\\xa0
Visit https://www.securityweekly.com/psw\\xa0for all the latest episodes!
Show Notes: https://securityweekly.com/psw-789\\xa0
'