Cybersecurity is extremely crucial when it comes to staying ahead of the newest threats. In this course, Dridex Banking Trojan, you’ll learn all about the banking Trojan Dridex. First, you’ll explore how Dridex is delivered through phishing campaigns and social engineering and ways to prevent initial infections. Next, you’ll learn ways to detect Dridex on your networks. Finally, you’ll learn how to respond when you have discovered an active infection. When you’re finished with this course, you’ll have the skills and knowledge of Dridex needed to disrupt
Dr. Josh Stroschein is an Assistant Professor at Dakota State University where he teaches malware analysis, software exploitation, reverse engineering, and penetration testing. Josh also works as a malware analyst for Bromium, an end-point security company and is the Director of Training for the Open Information Security Foundation (OISF).
Course Overview Hey, humans! I'm Aaron Rosenmund, a full‑time author and researcher for security here at Pluralsight. ‑And I'm Josh Stroschein, an author on Pluralsight, associate professor of cybersecurity at Dakota State University, Director of Training and Outreach for the Open Information Security Foundation, and a part‑time threat researcher for Bromium. ‑And welcome to our course, Dridex Banking Trojan. ‑Dridex is a banking trojan that focuses on stealing banking information, but it's actually modular enough to bring in additional capabilities into the environment. We are going to look at how it spreads using macro‑enabled office documents, how it uses a vast network of compromised servers to deliver the payload, and investigate its uses of living‑off‑the‑land techniques for post infection activity. We'll focus on identifying important behaviors and indicators using both host and network data, and use tools such as Suricata, Arkime, and abuse.ch. ‑And we're going to take all of that information and pack it up into a nice little bundle and give it to you to use in every phase of how you do your job. Whether it's prevention, let's make sure it stops before it happens, or whether we're detecting it, hey, I don't know if it's happening, let's find out if it is, or if you do find it, what do you do to respond to it? And you want to know more? Want to know how to do that for Dridex in your environment? Of course you do! And that's why I really hope that you join us for this course, Dridex Banking Trojan, on Pluralsight.