Advanced Plus Technical Training

EDR Attack Vectors

Start Date: June 10 2021

14:00 - 16:00 UTC+3 Helsinki

"CURRENTLY ALL THE COURSES IN SUMMER 2021 ARE FULL. PLEASE REGISTER IN THE FORM IF YOU WANT US TO CONTACT YOU WHEN NEW COURSES ARE OPENED FOR AUTUMN 2021!"

Course Description

This course covers practical aspects of how to analyze various stages of attack using the data provided by F-Secure EDR. The lectures are divided by attack specs. in the first lecture we will study various initial execution methods, in the second migration from the first compromised process, and so forth.

Each lecture is divided into introduction of the particular step, the most common methods used by attackers, and then continues with example data recorded by EDR. Each student will be provided a read only access to training company where we have example each exhibiting a given malicious behavior.

These lectures will be available later in F-Secure Academy as recordings – however, to benefit from the interactivity of the lectures, joining them is very much encouraged. Attending three of the five lectures of the course either via the events or through F-Secure Academy will provide you with an EDR Advanced Training certificate. 

Lectures

  • Lecture 1: June 10th – Execution
  • Lecture 2: June 22nd – Migration
  • Lecture 3: TBA, Q3 – Persistence
  • Lecture 4: TBA, Q3 – Lateral Movement
  • Lecture 5: TBA, Q3 – Privilege Escalation

Each lecture will be given online at 14:00-16:00 UTC+3 Helsinki time. 

Requirements

The Advanced Plus courses are free of charge and can be attended by any F-Secure Partner. The course requires some technical knowledge on how RDR functions, so we recommend completing F-Secure RDR Technical Training (Basic) in F-Secure Academy before participating.

Trainer

Jarno Niemelä
Principal Researcher, Tactical Defence Unit, F-Secure

Jarno Niemelä works as a Principal Researcher at F-Secure Tactical Defence unit. Jarno has been working on cyber defence related topics at F-Secure since year 2000, first in Anti-Virus lab, and then moving into behavioral analysis, behavioral analysis automation and cyber defence related topics. Jarno has been working with RDR and its predecessor technologies since their implementation at F-Secure.

CONTACT ME WHEN COURSES OPEN FOR Q3/4

We process the personal data you share with us in accordance with our Corporate Business Privacy Policy.