Completed
RPC hunting is hard
Class Central Classrooms beta
YouTube videos curated by Class Central.
Classroom Contents
Burning Bridges - Stopping Lateral Movement via the RPC Firewall
Automatically move to the next video in the Classroom when playback concludes
- 1 Intro
- 2 whoareyou.exe?
- 3 Remote Procedure Call
- 4 DCE/RPC Terminology
- 5 Runtime Library
- 6 Resources and Tools
- 7 RPC attacks demo
- 8 RPC Can't Be Easily Blocked
- 9 Why a Talk on RPC?
- 10 No OOTB Events
- 11 RPC ETW Incomplete
- 12 RPC hunting is hard
- 13 If You Can't Detect, Can You Block ?
- 14 RPC Filters are buggy / lacking
- 15 Goals
- 16 RPCFirewall Quick Demo
- 17 RPCFW Internals
- 18 Event Logs
- 19 Debug Messages
- 20 Commands
- 21 Configuration
- 22 No Performance Penalty (audit:false)
- 23 Other Considerations
- 24 Research Cycle
- 25 Example: Creating Deny Lists