Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

YouTube

Breaking NBAD and UEBA Detection

via YouTube

Overview

Explore techniques for circumventing Network Behavior Anomaly Detection (NBAD) and User and Entity Behavior Analytics (UEBA) in this 29-minute conference talk from BSides Tampa 2020. Delve into topics such as baselining, anomaly detection, data poisoning, and behavioral spoofing prevention. Learn about various tools and methods including pump and dump techniques, pocket dimensions, bridge networks, and UDP spraying. Gain insights on creating fake traffic, API curls, and baseline boiling. Conclude with an analysis of these techniques and discover remediation strategies to enhance network security.

Syllabus

Intro
LinkedIn Page
Pastebin script
Outline
Dr Dorothy Denning
Baselines
Tools
Anomalies
User Entity Behavioral Analysis
Poisoning Data
Preventing Behavioral Spoofing
Pump and Dump
Pocket Dimension
Bridge Network
UDP
Netcat
UDP Spray
Fake traffic
API curls
Baseline boiling
Analysis
How to remediate
Questions

Reviews

Start your review of Breaking NBAD and UEBA Detection

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.