Learning is Better with Friends
Invite your friends to enjoy free, online cyber security and IT video courses

The Cyber Kill Chain – Deep Dive

FacebookTwitterGoogle+LinkedInEmail
Learning should be free.
  • Build your cyber security or IT career, for free.
  • Get free training, then land your next job.
  • Join the free learning revolution now!
Register
Description
Virtual Practice Lab
Practice Test
The Cyber Kill Chain – Deep Dive

Module 8 is a deep dive into the Cyber Kill Chain (CKC) that was introduced in an earlier module. The phases of teh CKC lifecycle are:

  • Passive data discovery
  • Detection
  • Denial
  • Delaying
  • Degrading

Lockheed Martin (LM) has produced an intelligence-driven defense model consisting of seven steps. Dean begins reviewing this model by discussing passive discovery of data and the many different sources of data within an environment.

Next he discusses detecting future threat actions and capabilities and how this can be accomplished by reverse engineering malware. This process can provide clues to understanding how malware operates and how the infection occurred. Such knowledge can help prevent future infections.

Detecting weaponization is discussed next. This involves detecting malicious payloads, Trojans, or what is being targeted such as a file or app. Evidence of such payloads can manifest as registry changes, new or missing files, and other artifacts as well as suspicious traffic activity.

The video concludes with a discussion of the analysis of the attack timeline, when the malware was created, tested, and deployed, its capabilities and level of sophistication which all can provide clues to crafting a defense and detection methods.

Recommended Study Material

Recorded Future Cyber Daily

 

 

With new threats lurking around every corner, you need to be prepared. Join thousands of your infosec peers and subscribe to the Cyber Daily for free trending threat intelligence insights.

 

 

Learn on the go.
The app designed for the modern cyber security professional.
Get it on Google PlayGet it on the App Store
Hands On Lab
Verified
Microsoft Monitoring and Operating a Private Cloud with System Center 2012 Virtual Lab
Stand out as an exceptionally skilled enterprise professional and work hands- on using Microsoft System Center 2012 components. In the Microsoft 70-246 Virtual Lab, learn to effectively implement service offerings, monitor reports and dashboards, manage problems in
15 Hours
Hands On Lab
Verified
Microsoft Windows Server 2008 Active Directory Configuring Virtual Lab
Harness Windows Server 2008 to manage your infrastructure in a cost-effective and high-performance way and set yourself apart as a highly skilled enterprise professional. In the Microsoft 70-640 Virtual Lab, work hands- on with Windows 2008 and learn to effectively
10 Hours
Practice Test
Verified
Oracle Upgrade 9i 10g OCA to 11g OCP Practice Test
Prove your capabilities as an exceptionally skilled database administrator. Obtain a strong foundation in the most advanced database management system in the industry and prepare to earn the Oracle 1Z0-034 certification.
22 Hours
Practice Test
Verified
Oracle 1Z0-060: Upgrade to Database 12c Administrator
Prove your capabilities as an exceptionally skilled database administrator. Obtain a strong foundation in the most advanced database management system in the industry and earn the Oracle 1Z0-060 certification.
22 Hours
Practice Labs and Exam Vouchers

Congratulations! You're taking the first step to getting certified. Get some hands on experience with available practice labs OR save some money, support Cybrary, and purchase discounted exam vouchers. Ready to earn your next industry certification? Join cyber security's largest community and start learning today.

JOIN CYBRARY

RELATED TO THIS COURSE
Oracle 1Z0-808: Java SE 8 Programmer I
Kaplan
Practice Test
unlockedIncluded in your plan
Oracle 1Z0-809: Java SE 8 Programmer II
Kaplan
Practice Test
unlockedIncluded in your plan
Oracle 1Z0-810: Upgrade Java SE 7 to Java SE 8 OCP Programmer
Kaplan
Practice Test
unlockedIncluded in your plan
Upcoming Industry Events
Sep
20
Into a Dark Realm: The Evolution of Ransomware
Webinar by Cofense Inc. @ 2 : 00 PM EST
Sep
20
How Blue Cross/Blue Shield Successfully Gained Enterprise-wide Adoption of Privileged Account Management
Webinar by Thycotic @ 11 : 00 AM EST
Sep
20
Building the Internet of Trusted Data
Webinar by Cybersecurity Collaborative @ 2 : 00 PM EST
Sep
20
InsightVM: See the Next Evolution of Vulnerability Management
Webinar by Rapid7 @ 2 : 00 PM EST
Sep
20
Attend a Live Demo of Recorded Future Monitoring the Dark Web With Threat Intelligence
Webinar by Recorded Future @ 2 : 00 PM EST
Sep
20
Using the ATT&CK™ Framework to Mature Your Threat Hunting Program
Webinar by Carbon Black, Inc. @ 1 : 00 PM EST
Sep
24
ThreatConnect Platform Walkthrough
Webinar by ThreatConnect @ 2 : 00 PM EST
Sep
25
How to Prevent Threats that Traditional Antivirus Misses
Webinar by Carbon Black, Inc. @ 1 : 00 PM EST
Sep
26
Finding Your SecOps Solution: Products For Real-Time Query and Remediation
Webinar by Carbon Black, Inc. @ 2 : 00 PM EST
Sep
27
Modern Web Application Security Testing Made Simple
Webinar by Rapid7 @ 2 : 00 PM EST
View more events
Interested in promoting your company's event?

Our Revolution

We believe Cyber Security training should be free, for everyone, FOREVER. Everyone, everywhere, deserves the OPPORTUNITY to learn, begin and grow a career in this fascinating field. Therefore, Cybrary is a free community where people, companies and training come together to give everyone the ability to collaborate in an open source way that is revolutionizing the cyber security educational experience.

Cybrary On The Go

Get the Cybrary app for Android for online and offline viewing of our lessons.

Get it on Google Play
 

Support Cybrary

Donate Here to Get This Month's Donor Badge

 
Skip to toolbar

We recommend always using caution when following any link

Are you sure you want to continue?

Continue
Cancel