Endpoint Security Malware Mitigation when Direct System Calls are Used November 27, 2018 by arpit In 2018 we have seen an increase in the malicious use of direct system calls in order to evade security product hooks. These hooks are used to monitor API calls which may hint to malicious activity. Direct system calls evasion method utilizes reading system call numbers from ntdll.dll, putting the appropriate system call number on […] Read more » malware mitigation
OT Security Automating ICS Network Security November 22, 2018 by arpit Industrial Control Systems (ICS) are the backbone of the global economy. ICS solutions control the operational technology (OT) networks that run large-scale manufacturing facilities, critical infrastructure sites, and many more of the building blocks of modern society. Therefore, ICS network security is critical to the economy. The OT networks running manufacturing and critical infrastructure facilities […] Read more » automation ICS Network Security
Endpoint Security Detecting Reverse Shell with Machine Learning November 15, 2018 by arpit Amongst Cyber attackers and penetration testers, obtaining a reverse shell on a remote machine is considered a ‘home-run’. Once the reverse shell has been obtained, the remote machine is at the mercy of the attacker. Existing attack platforms such as Metasploit, Empire, and others offer myriad techniques and implementations for obtaining different types of reverse […] Read more » machine learning malware detection reverse shell