Webcasts

Webcast Archive

Want to attend our webcasts live? See what’s coming next on our Events page.

Chris Brenton guides you through your first RITA network threat hunt by explaining the primary indicators and best practices using RITA version 5.

🔗 Blog post located here -
 https://www.activecountermeasures.com/ritav5-the-video-series/

Real Intelligence Threat Analytics (RITA) is an open-source framework for detecting command and control communication through network traffic analysis. More information and free download of RITA can be found here: https://www.activecountermeasures.com/free-tools/rita/

🔗 Register for webcasts, summits, and workshops - 
https://poweredbybhis.com 

🔗Active Countermeasures Socials
Twitter: https://twitter.com/ActiveCmeasures
LinkedIn: https://www.linkedin.com/company/active-countermeasures/
Discord: https://discord.gg/threathunter

🔗Our Threat Hunting Tool ~ AC-Hunter
Features - https://www.activecountermeasures.com/ac-hunter-features/
Interactive Demo Space - https://www.activecountermeasures.com/live-demo/

🔗Active Countermeasures Open-Source Tools
https://www.activecountermeasures.com/free-tools/

🔗Educational Threat Hunting Content
FREE 6-Hour Threat Hunt Training: https://www.activecountermeasures.com/hunt-training/
Active Countermeasures Blog: https://www.activecountermeasures.com/blog/
Active Countermeasures YouTube: https://youtube.com/activecountermeasures

🔗Learn Threat Hunting Skills from Antisyphon Training
Entry-Level (Pay-What-You-Can): https://www.antisyphontraining.com/pay-what-you-can/
Advanced: https://www.antisyphontraining.com/advanced-network-threat-hunting-w-chris-brenton/

🔗Active Countermeasures Shirts
https://spearphish-general-store.myshopify.com/collections/active-countermeasures

🔗Our Tribe
Black Hills Infosec: https://www.blackhillsinfosec.com/
Wld West Hackin' Fest: https://wildwesthackinfest.com/
Antisyphon Training: https://www.antisyphontraining.com/

#infosec #FreeTools #BHIS #Threathunting #threatintel #cybersecurity

Chris Brenton guides you through your first RITA network threat hunt by explaining the primary indicators and best practices using RITA version 5.

Real Intelligence Threat Analytics (RITA) is an open-source framework for detecting command and control communication through network traffic analysis. More information and free download of RITA can be found here: https://www.activecountermeasures.com/free-tools/rita/

🔗 Register for webcasts, summits, and workshops -
https://poweredbybhis.com

🔗Active Countermeasures Socials
Twitter: https://twitter.com/ActiveCmeasures
LinkedIn: https://www.linkedin.com/company/active-countermeasures/
Discord: https://discord.gg/threathunter

🔗Our Threat Hunting Tool ~ AC-Hunter
Features - https://www.activecountermeasures.com/ac-hunter-features/
Interactive Demo Space - https://www.activecountermeasures.com/live-demo/

🔗Active Countermeasures Open-Source Tools
https://www.activecountermeasures.com/free-tools/

🔗Educational Threat Hunting Content
FREE 6-Hour Threat Hunt Training: https://www.activecountermeasures.com/hunt-training/
Active Countermeasures Blog: https://www.activecountermeasures.com/blog/
Active Countermeasures YouTube: https://youtube.com/activecountermeasures

🔗Learn Threat Hunting Skills from Antisyphon Training
Entry-Level (Pay-What-You-Can): https://www.antisyphontraining.com/pay-what-you-can/
Advanced: https://www.antisyphontraining.com/advanced-network-threat-hunting-w-chris-brenton/

🔗Active Countermeasures Shirts
https://spearphish-general-store.myshopify.com/collections/active-countermeasures

🔗Our Tribe
Black Hills Infosec: https://www.blackhillsinfosec.com/
Wld West Hackin' Fest: https://wildwesthackinfest.com/
Antisyphon Training: https://www.antisyphontraining.com/

#infosec #FreeTools #BHIS #Threathunting #threatintel #cybersecurity

9 2

YouTube Video VVU2eFBlV1ZxNkxwTHFPWVE0STlodl9RLkdPTVU4V1ZvTE5N

6. RITA v5 - First Threat Hunt with RITA v5 #rita #freetools #infosec

Chris Brenton provides instructions on how to set up RITA and Zeek for live monitoring of your network.

🔗 Blog post located here -
 https://www.activecountermeasures.com/ritav5-the-video-series/

Real Intelligence Threat Analytics (RITA) is an open-source framework for detecting command and control communication through network traffic analysis. More information and free download of RITA can be found here: https://www.activecountermeasures.com/free-tools/rita/

🔗 Register for webcasts, summits, and workshops - 
https://poweredbybhis.com 

🔗Active Countermeasures Socials
Twitter: https://twitter.com/ActiveCmeasures
LinkedIn: https://www.linkedin.com/company/active-countermeasures/
Discord: https://discord.gg/threathunter

🔗Our Threat Hunting Tool ~ AC-Hunter
Features - https://www.activecountermeasures.com/ac-hunter-features/
Interactive Demo Space - https://www.activecountermeasures.com/live-demo/

🔗Active Countermeasures Open-Source Tools
https://www.activecountermeasures.com/free-tools/

🔗Educational Threat Hunting Content
FREE 6-Hour Threat Hunt Training: https://www.activecountermeasures.com/hunt-training/
Active Countermeasures Blog: https://www.activecountermeasures.com/blog/
Active Countermeasures YouTube: https://youtube.com/activecountermeasures

🔗Learn Threat Hunting Skills from Antisyphon Training
Entry-Level (Pay-What-You-Can): https://www.antisyphontraining.com/pay-what-you-can/
Advanced: https://www.antisyphontraining.com/advanced-network-threat-hunting-w-chris-brenton/

🔗Active Countermeasures Shirts
https://spearphish-general-store.myshopify.com/collections/active-countermeasures

🔗Our Tribe
Black Hills Infosec: https://www.blackhillsinfosec.com/
Wld West Hackin' Fest: https://wildwesthackinfest.com/
Antisyphon Training: https://www.antisyphontraining.com/

#infosec #FreeTools #BHIS #Threathunting #threatintel #cybersecurity

Chris Brenton provides instructions on how to set up RITA and Zeek for live monitoring of your network.

Real Intelligence Threat Analytics (RITA) is an open-source framework for detecting command and control communication through network traffic analysis. More information and free download of RITA can be found here: https://www.activecountermeasures.com/free-tools/rita/

🔗 Register for webcasts, summits, and workshops -
https://poweredbybhis.com

🔗Active Countermeasures Socials
Twitter: https://twitter.com/ActiveCmeasures
LinkedIn: https://www.linkedin.com/company/active-countermeasures/
Discord: https://discord.gg/threathunter

🔗Our Threat Hunting Tool ~ AC-Hunter
Features - https://www.activecountermeasures.com/ac-hunter-features/
Interactive Demo Space - https://www.activecountermeasures.com/live-demo/

🔗Active Countermeasures Open-Source Tools
https://www.activecountermeasures.com/free-tools/

🔗Educational Threat Hunting Content
FREE 6-Hour Threat Hunt Training: https://www.activecountermeasures.com/hunt-training/
Active Countermeasures Blog: https://www.activecountermeasures.com/blog/
Active Countermeasures YouTube: https://youtube.com/activecountermeasures

🔗Learn Threat Hunting Skills from Antisyphon Training
Entry-Level (Pay-What-You-Can): https://www.antisyphontraining.com/pay-what-you-can/
Advanced: https://www.antisyphontraining.com/advanced-network-threat-hunting-w-chris-brenton/

🔗Active Countermeasures Shirts
https://spearphish-general-store.myshopify.com/collections/active-countermeasures

🔗Our Tribe
Black Hills Infosec: https://www.blackhillsinfosec.com/
Wld West Hackin' Fest: https://wildwesthackinfest.com/
Antisyphon Training: https://www.antisyphontraining.com/

#infosec #FreeTools #BHIS #Threathunting #threatintel #cybersecurity

11 2

YouTube Video VVU2eFBlV1ZxNkxwTHFPWVE0STlodl9RLnRSbHpWTkcyc0dR

5. RITA v5 - Live Monitoring #rita #freetools #infosec

🔗 Register for webcasts, summits, and workshops - 
https://poweredbybhis.com 

🔗Active Countermeasures Socials
Twitter: https://twitter.com/ActiveCmeasures
LinkedIn: https://www.linkedin.com/company/active-countermeasures/
Discord: https://discord.gg/threathunter

🔗Our Threat Hunting Tool ~ AC-Hunter
Features - https://www.activecountermeasures.com/ac-hunter-features/
Interactive Demo Space - https://www.activecountermeasures.com/live-demo/

🔗Active Countermeasures Open-Source Tools
https://www.activecountermeasures.com/free-tools/

🔗Educational Threat Hunting Content
FREE 6-Hour Threat Hunt Training: https://www.activecountermeasures.com/hunt-training/
Active Countermeasures Blog: https://www.activecountermeasures.com/blog/
Active Countermeasures YouTube: https://youtube.com/activecountermeasures

🔗Learn Threat Hunting Skills from Antisyphon Training
Entry-Level (Pay-What-You-Can): https://www.antisyphontraining.com/pay-what-you-can/
Advanced: https://www.antisyphontraining.com/advanced-network-threat-hunting-w-chris-brenton/

🔗Active Countermeasures Shirts
https://spearphish-general-store.myshopify.com/collections/active-countermeasures

🔗Our Tribe
Black Hills Infosec: https://www.blackhillsinfosec.com/
Wld West Hackin' Fest: https://wildwesthackinfest.com/
Antisyphon Training: https://www.antisyphontraining.com/

#infosec #FreeTools #BHIS #Threathunting #threatintel #cybersecurity #training #freetraining

🔗 Register for webcasts, summits, and workshops -
https://poweredbybhis.com

🔗Active Countermeasures Socials
Twitter: https://twitter.com/ActiveCmeasures
LinkedIn: https://www.linkedin.com/company/active-countermeasures/
Discord: https://discord.gg/threathunter

🔗Our Threat Hunting Tool ~ AC-Hunter
Features - https://www.activecountermeasures.com/ac-hunter-features/
Interactive Demo Space - https://www.activecountermeasures.com/live-demo/

🔗Active Countermeasures Open-Source Tools
https://www.activecountermeasures.com/free-tools/

🔗Educational Threat Hunting Content
FREE 6-Hour Threat Hunt Training: https://www.activecountermeasures.com/hunt-training/
Active Countermeasures Blog: https://www.activecountermeasures.com/blog/
Active Countermeasures YouTube: https://youtube.com/activecountermeasures

🔗Learn Threat Hunting Skills from Antisyphon Training
Entry-Level (Pay-What-You-Can): https://www.antisyphontraining.com/pay-what-you-can/
Advanced: https://www.antisyphontraining.com/advanced-network-threat-hunting-w-chris-brenton/

🔗Active Countermeasures Shirts
https://spearphish-general-store.myshopify.com/collections/active-countermeasures

🔗Our Tribe
Black Hills Infosec: https://www.blackhillsinfosec.com/
Wld West Hackin' Fest: https://wildwesthackinfest.com/
Antisyphon Training: https://www.antisyphontraining.com/

#infosec #FreeTools #BHIS #Threathunting #threatintel #cybersecurity #training #freetraining

50 1

YouTube Video VVU2eFBlV1ZxNkxwTHFPWVE0STlodl9RLmRSeEptcG1fNXpn

2024-09-06 Cyber Threat Hunting Level 1 | Chris Brenton #infosec #training #freetraining

Chris Brenton explains how to import PCAP files for analysis using RITA version 5.

🔗 Blog post located here -
 https://www.activecountermeasures.com/ritav5-the-video-series/

Real Intelligence Threat Analytics (RITA) is an open-source framework for detecting command and control communication through network traffic analysis. More information and free download of RITA can be found here: https://www.activecountermeasures.com/free-tools/rita/

🔗 Register for webcasts, summits, and workshops - 
https://poweredbybhis.com 

🔗Active Countermeasures Socials
Twitter: https://twitter.com/ActiveCmeasures
LinkedIn: https://www.linkedin.com/company/active-countermeasures/
Discord: https://discord.gg/threathunter

🔗Our Threat Hunting Tool ~ AC-Hunter
Features - https://www.activecountermeasures.com/ac-hunter-features/
Interactive Demo Space - https://www.activecountermeasures.com/live-demo/

🔗Active Countermeasures Open-Source Tools
https://www.activecountermeasures.com/free-tools/

🔗Educational Threat Hunting Content
FREE 6-Hour Threat Hunt Training: https://www.activecountermeasures.com/hunt-training/
Active Countermeasures Blog: https://www.activecountermeasures.com/blog/
Active Countermeasures YouTube: https://youtube.com/activecountermeasures

🔗Learn Threat Hunting Skills from Antisyphon Training
Entry-Level (Pay-What-You-Can): https://www.antisyphontraining.com/pay-what-you-can/
Advanced: https://www.antisyphontraining.com/advanced-network-threat-hunting-w-chris-brenton/

🔗Active Countermeasures Shirts
https://spearphish-general-store.myshopify.com/collections/active-countermeasures

🔗Our Tribe
Black Hills Infosec: https://www.blackhillsinfosec.com/
Wld West Hackin' Fest: https://wildwesthackinfest.com/
Antisyphon Training: https://www.antisyphontraining.com/

#infosec #FreeTools #BHIS #Threathunting #threatintel #cybersecurity

Chris Brenton explains how to import PCAP files for analysis using RITA version 5.

Real Intelligence Threat Analytics (RITA) is an open-source framework for detecting command and control communication through network traffic analysis. More information and free download of RITA can be found here: https://www.activecountermeasures.com/free-tools/rita/

🔗 Register for webcasts, summits, and workshops -
https://poweredbybhis.com

🔗Active Countermeasures Socials
Twitter: https://twitter.com/ActiveCmeasures
LinkedIn: https://www.linkedin.com/company/active-countermeasures/
Discord: https://discord.gg/threathunter

🔗Our Threat Hunting Tool ~ AC-Hunter
Features - https://www.activecountermeasures.com/ac-hunter-features/
Interactive Demo Space - https://www.activecountermeasures.com/live-demo/

🔗Active Countermeasures Open-Source Tools
https://www.activecountermeasures.com/free-tools/

🔗Educational Threat Hunting Content
FREE 6-Hour Threat Hunt Training: https://www.activecountermeasures.com/hunt-training/
Active Countermeasures Blog: https://www.activecountermeasures.com/blog/
Active Countermeasures YouTube: https://youtube.com/activecountermeasures

🔗Learn Threat Hunting Skills from Antisyphon Training
Entry-Level (Pay-What-You-Can): https://www.antisyphontraining.com/pay-what-you-can/
Advanced: https://www.antisyphontraining.com/advanced-network-threat-hunting-w-chris-brenton/

🔗Active Countermeasures Shirts
https://spearphish-general-store.myshopify.com/collections/active-countermeasures

🔗Our Tribe
Black Hills Infosec: https://www.blackhillsinfosec.com/
Wld West Hackin' Fest: https://wildwesthackinfest.com/
Antisyphon Training: https://www.antisyphontraining.com/

#infosec #FreeTools #BHIS #Threathunting #threatintel #cybersecurity

9 0

YouTube Video VVU2eFBlV1ZxNkxwTHFPWVE0STlodl9RLmt3UjNUaklnb0Nv

4. RITA v5 - Working with PCAPs #rita #freetools #infosec

Chris Brenton walks through how to download and install RITA version 5.

🔗 Blog post located here -
 https://www.activecountermeasures.com/ritav5-the-video-series/

Real Intelligence Threat Analytics (RITA) is an open-source framework for detecting command and control communication through network traffic analysis. More information and free download of RITA can be found here: https://www.activecountermeasures.com/free-tools/rita/

🔗 Register for webcasts, summits, and workshops - 
https://poweredbybhis.com 

🔗Active Countermeasures Socials
Twitter: https://twitter.com/ActiveCmeasures
LinkedIn: https://www.linkedin.com/company/active-countermeasures/
Discord: https://discord.gg/threathunter

🔗Our Threat Hunting Tool ~ AC-Hunter
Features - https://www.activecountermeasures.com/ac-hunter-features/
Interactive Demo Space - https://www.activecountermeasures.com/live-demo/

🔗Active Countermeasures Open-Source Tools
https://www.activecountermeasures.com/free-tools/

🔗Educational Threat Hunting Content
FREE 6-Hour Threat Hunt Training: https://www.activecountermeasures.com/hunt-training/
Active Countermeasures Blog: https://www.activecountermeasures.com/blog/
Active Countermeasures YouTube: https://youtube.com/activecountermeasures

🔗Learn Threat Hunting Skills from Antisyphon Training
Entry-Level (Pay-What-You-Can): https://www.antisyphontraining.com/pay-what-you-can/
Advanced: https://www.antisyphontraining.com/advanced-network-threat-hunting-w-chris-brenton/

🔗Active Countermeasures Shirts
https://spearphish-general-store.myshopify.com/collections/active-countermeasures

🔗Our Tribe
Black Hills Infosec: https://www.blackhillsinfosec.com/
Wld West Hackin' Fest: https://wildwesthackinfest.com/
Antisyphon Training: https://www.antisyphontraining.com/

#infosec #FreeTools #BHIS #Threathunting #threatintel #cybersecurity

Chris Brenton walks through how to download and install RITA version 5.

Real Intelligence Threat Analytics (RITA) is an open-source framework for detecting command and control communication through network traffic analysis. More information and free download of RITA can be found here: https://www.activecountermeasures.com/free-tools/rita/

🔗 Register for webcasts, summits, and workshops -
https://poweredbybhis.com

🔗Active Countermeasures Socials
Twitter: https://twitter.com/ActiveCmeasures
LinkedIn: https://www.linkedin.com/company/active-countermeasures/
Discord: https://discord.gg/threathunter

🔗Our Threat Hunting Tool ~ AC-Hunter
Features - https://www.activecountermeasures.com/ac-hunter-features/
Interactive Demo Space - https://www.activecountermeasures.com/live-demo/

🔗Active Countermeasures Open-Source Tools
https://www.activecountermeasures.com/free-tools/

🔗Educational Threat Hunting Content
FREE 6-Hour Threat Hunt Training: https://www.activecountermeasures.com/hunt-training/
Active Countermeasures Blog: https://www.activecountermeasures.com/blog/
Active Countermeasures YouTube: https://youtube.com/activecountermeasures

🔗Learn Threat Hunting Skills from Antisyphon Training
Entry-Level (Pay-What-You-Can): https://www.antisyphontraining.com/pay-what-you-can/
Advanced: https://www.antisyphontraining.com/advanced-network-threat-hunting-w-chris-brenton/

🔗Active Countermeasures Shirts
https://spearphish-general-store.myshopify.com/collections/active-countermeasures

🔗Our Tribe
Black Hills Infosec: https://www.blackhillsinfosec.com/
Wld West Hackin' Fest: https://wildwesthackinfest.com/
Antisyphon Training: https://www.antisyphontraining.com/

#infosec #FreeTools #BHIS #Threathunting #threatintel #cybersecurity

12 3

YouTube Video VVU2eFBlV1ZxNkxwTHFPWVE0STlodl9RLm9QNXhZcTBfNDRF

3. RITA v5 - Installation #rita #freetools #infosec

Chris Brenton explains how to configure your network environment to capture network traffic for monitoring and analysis by RITA.

🔗 Blog post located here -
 https://www.activecountermeasures.com/ritav5-the-video-series/

Real Intelligence Threat Analytics (RITA) is an open-source framework for detecting command and control communication through network traffic analysis. More information and free download of RITA can be found here: https://www.activecountermeasures.com/free-tools/rita/

🔗 Register for webcasts, summits, and workshops - 
https://poweredbybhis.com 

🔗Active Countermeasures Socials
Twitter: https://twitter.com/ActiveCmeasures
LinkedIn: https://www.linkedin.com/company/active-countermeasures/
Discord: https://discord.gg/threathunter

🔗Our Threat Hunting Tool ~ AC-Hunter
Features - https://www.activecountermeasures.com/ac-hunter-features/
Interactive Demo Space - https://www.activecountermeasures.com/live-demo/

🔗Active Countermeasures Open-Source Tools
https://www.activecountermeasures.com/free-tools/

🔗Educational Threat Hunting Content
FREE 6-Hour Threat Hunt Training: https://www.activecountermeasures.com/hunt-training/
Active Countermeasures Blog: https://www.activecountermeasures.com/blog/
Active Countermeasures YouTube: https://youtube.com/activecountermeasures

🔗Learn Threat Hunting Skills from Antisyphon Training
Entry-Level (Pay-What-You-Can): https://www.antisyphontraining.com/pay-what-you-can/
Advanced: https://www.antisyphontraining.com/advanced-network-threat-hunting-w-chris-brenton/

🔗Active Countermeasures Shirts
https://spearphish-general-store.myshopify.com/collections/active-countermeasures

🔗Our Tribe
Black Hills Infosec: https://www.blackhillsinfosec.com/
Wld West Hackin' Fest: https://wildwesthackinfest.com/
Antisyphon Training: https://www.antisyphontraining.com/

#infosec #FreeTools #BHIS #Threathunting #threatintel #cybersecurity

Chris Brenton explains how to configure your network environment to capture network traffic for monitoring and analysis by RITA.

Real Intelligence Threat Analytics (RITA) is an open-source framework for detecting command and control communication through network traffic analysis. More information and free download of RITA can be found here: https://www.activecountermeasures.com/free-tools/rita/

🔗 Register for webcasts, summits, and workshops -
https://poweredbybhis.com

🔗Active Countermeasures Socials
Twitter: https://twitter.com/ActiveCmeasures
LinkedIn: https://www.linkedin.com/company/active-countermeasures/
Discord: https://discord.gg/threathunter

🔗Our Threat Hunting Tool ~ AC-Hunter
Features - https://www.activecountermeasures.com/ac-hunter-features/
Interactive Demo Space - https://www.activecountermeasures.com/live-demo/

🔗Active Countermeasures Open-Source Tools
https://www.activecountermeasures.com/free-tools/

🔗Educational Threat Hunting Content
FREE 6-Hour Threat Hunt Training: https://www.activecountermeasures.com/hunt-training/
Active Countermeasures Blog: https://www.activecountermeasures.com/blog/
Active Countermeasures YouTube: https://youtube.com/activecountermeasures

🔗Learn Threat Hunting Skills from Antisyphon Training
Entry-Level (Pay-What-You-Can): https://www.antisyphontraining.com/pay-what-you-can/
Advanced: https://www.antisyphontraining.com/advanced-network-threat-hunting-w-chris-brenton/

🔗Active Countermeasures Shirts
https://spearphish-general-store.myshopify.com/collections/active-countermeasures

🔗Our Tribe
Black Hills Infosec: https://www.blackhillsinfosec.com/
Wld West Hackin' Fest: https://wildwesthackinfest.com/
Antisyphon Training: https://www.antisyphontraining.com/

#infosec #FreeTools #BHIS #Threathunting #threatintel #cybersecurity

7 0

YouTube Video VVU2eFBlV1ZxNkxwTHFPWVE0STlodl9RLmJ4RHotZmk2bGpr

2. RITA v5 - Network Architecture #rita #freetools #infosec

Chris Brenton shows some of the differences of RITA version 4 and a first look at the new RITA version 5.

🔗 Blog post located here -
 https://www.activecountermeasures.com/ritav5-the-video-series/

Real Intelligence Threat Analytics (RITA) is an open-source framework for detecting command and control communication through network traffic analysis. More information and free download of RITA can be found here: https://www.activecountermeasures.com/free-tools/rita/

🔗 Register for webcasts, summits, and workshops - 
https://poweredbybhis.com 

🔗Active Countermeasures Socials
Twitter: https://twitter.com/ActiveCmeasures
LinkedIn: https://www.linkedin.com/company/active-countermeasures/
Discord: https://discord.gg/threathunter

🔗Our Threat Hunting Tool ~ AC-Hunter
Features - https://www.activecountermeasures.com/ac-hunter-features/
Interactive Demo Space - https://www.activecountermeasures.com/live-demo/

🔗Active Countermeasures Open-Source Tools
https://www.activecountermeasures.com/free-tools/

🔗Educational Threat Hunting Content
FREE 6-Hour Threat Hunt Training: https://www.activecountermeasures.com/hunt-training/
Active Countermeasures Blog: https://www.activecountermeasures.com/blog/
Active Countermeasures YouTube: https://youtube.com/activecountermeasures

🔗Learn Threat Hunting Skills from Antisyphon Training
Entry-Level (Pay-What-You-Can): https://www.antisyphontraining.com/pay-what-you-can/
Advanced: https://www.antisyphontraining.com/advanced-network-threat-hunting-w-chris-brenton/

🔗Active Countermeasures Shirts
https://spearphish-general-store.myshopify.com/collections/active-countermeasures

🔗Our Tribe
Black Hills Infosec: https://www.blackhillsinfosec.com/
Wld West Hackin' Fest: https://wildwesthackinfest.com/
Antisyphon Training: https://www.antisyphontraining.com/

#infosec #FreeTools #BHIS #Threathunting #threatintel #cybersecurity

Chris Brenton shows some of the differences of RITA version 4 and a first look at the new RITA version 5.

Real Intelligence Threat Analytics (RITA) is an open-source framework for detecting command and control communication through network traffic analysis. More information and free download of RITA can be found here: https://www.activecountermeasures.com/free-tools/rita/

🔗 Register for webcasts, summits, and workshops -
https://poweredbybhis.com

🔗Active Countermeasures Socials
Twitter: https://twitter.com/ActiveCmeasures
LinkedIn: https://www.linkedin.com/company/active-countermeasures/
Discord: https://discord.gg/threathunter

🔗Our Threat Hunting Tool ~ AC-Hunter
Features - https://www.activecountermeasures.com/ac-hunter-features/
Interactive Demo Space - https://www.activecountermeasures.com/live-demo/

🔗Active Countermeasures Open-Source Tools
https://www.activecountermeasures.com/free-tools/

🔗Educational Threat Hunting Content
FREE 6-Hour Threat Hunt Training: https://www.activecountermeasures.com/hunt-training/
Active Countermeasures Blog: https://www.activecountermeasures.com/blog/
Active Countermeasures YouTube: https://youtube.com/activecountermeasures

🔗Learn Threat Hunting Skills from Antisyphon Training
Entry-Level (Pay-What-You-Can): https://www.antisyphontraining.com/pay-what-you-can/
Advanced: https://www.antisyphontraining.com/advanced-network-threat-hunting-w-chris-brenton/

🔗Active Countermeasures Shirts
https://spearphish-general-store.myshopify.com/collections/active-countermeasures

🔗Our Tribe
Black Hills Infosec: https://www.blackhillsinfosec.com/
Wld West Hackin' Fest: https://wildwesthackinfest.com/
Antisyphon Training: https://www.antisyphontraining.com/

29 0

YouTube Video VVU2eFBlV1ZxNkxwTHFPWVE0STlodl9RLll5ZGQyVFZPUk1B

1. RITA v5 - First Look RITAv4 vs RITAv5 #RITA #freetools #infosec

A video summary by Faan Rossouw of the Malware of the Day - Understanding C2 Beacons - Part 2 of 2

🔗 Blog post located here:  https://www.activecountermeasures.com/malware-of-the-day-understanding-c2-beacons-part-2-of-2
🔗 AC-Hunter: 
https://www.activecountermeasures.com/ac-hunter/
🔗 AC-Hunter Community Edition: https://www.activecountermeasures.com/ac-hunter-community-edition/
🔗 Register for webcasts, summits, and workshops - 
https://poweredbybhis.com
🔗 RITA on GitHub: 
https://github.com/activecm/rita
🔗 Interactive Demo Space  - 
https://www.activecountermeasures.com/live-demo/

Timeline:
00:06 - Introduction
01:53 - Quick recap
04:08 - Base histogram
06:12 - Decreased delay
06:55 - Increased delay
08:57 - Decreased jitter
10:22 - Increased jitter
11:17 - No jitter
14:26 - Round robin host rotation strategy
15:26 - Random host rotation strategy
16:52 - Conclusion

///Active Countermeasures Open-Source Tools
https://www.activecountermeasures.com/free-tools/

///Active Countermeasures Socials
Twitter: https://twitter.com/ActiveCmeasures
LinkedIn: https://www.linkedin.com/company/active-countermeasures/
Discord: https://discord.gg/threathunter

Educational Threat Hunting Content
FREE 6-Hour Threat Hunt Training: https://www.activecountermeasures.com/hunt-training/
Active Countermeasures Blog: https://www.activecountermeasures.com/blog/
Active Countermeasures YouTube: https://youtube.com/activecountermeasures

Learn Threat Hunting Skills from Antisyphon Training
Entry-Level (Pay-What-You-Can): https://www.antisyphontraining.com/pay-what-you-can/
Advanced: https://www.antisyphontraining.com/advanced-network-threat-hunting-w-chris-brenton/

Active Countermeasures Shirts
https://spearphish-general-store.myshopify.com/collections/active-countermeasures

Our Tribe
Black Hills Infosec: https://www.blackhillsinfosec.com/
Wld West Hackin' Fest: https://wildwesthackinfest.com/
Antisyphon Training: https://www.antisyphontraining.com/

A video summary by Faan Rossouw of the Malware of the Day - Understanding C2 Beacons - Part 2 of 2

🔗 Blog post located here: https://www.activecountermeasures.com/malware-of-the-day-understanding-c2-beacons-part-2-of-2
🔗 AC-Hunter:
https://www.activecountermeasures.com/ac-hunter/
🔗 AC-Hunter Community Edition: https://www.activecountermeasures.com/ac-hunter-community-edition/
🔗 Register for webcasts, summits, and workshops -
https://poweredbybhis.com
🔗 RITA on GitHub:
https://github.com/activecm/rita
🔗 Interactive Demo Space -
https://www.activecountermeasures.com/live-demo/

Timeline:
00:06 - Introduction
01:53 - Quick recap
04:08 - Base histogram
06:12 - Decreased delay
06:55 - Increased delay
08:57 - Decreased jitter
10:22 - Increased jitter
11:17 - No jitter
14:26 - Round robin host rotation strategy
15:26 - Random host rotation strategy
16:52 - Conclusion

///Active Countermeasures Open-Source Tools
https://www.activecountermeasures.com/free-tools/

///Active Countermeasures Socials
Twitter: https://twitter.com/ActiveCmeasures
LinkedIn: https://www.linkedin.com/company/active-countermeasures/
Discord: https://discord.gg/threathunter

Educational Threat Hunting Content
FREE 6-Hour Threat Hunt Training: https://www.activecountermeasures.com/hunt-training/
Active Countermeasures Blog: https://www.activecountermeasures.com/blog/
Active Countermeasures YouTube: https://youtube.com/activecountermeasures

Learn Threat Hunting Skills from Antisyphon Training
Entry-Level (Pay-What-You-Can): https://www.antisyphontraining.com/pay-what-you-can/
Advanced: https://www.antisyphontraining.com/advanced-network-threat-hunting-w-chris-brenton/

Active Countermeasures Shirts
https://spearphish-general-store.myshopify.com/collections/active-countermeasures

Our Tribe
Black Hills Infosec: https://www.blackhillsinfosec.com/
Wld West Hackin' Fest: https://wildwesthackinfest.com/
Antisyphon Training: https://www.antisyphontraining.com/

9 0

YouTube Video VVU2eFBlV1ZxNkxwTHFPWVE0STlodl9RLlN2alpkQ3dyRVBv

Understanding C2 Beacons - Part 2 of 2 | Malware of the Day

A video summary by Faan Rossouw of the Malware of the Day - Understanding C2 Beacons - Part 1 of 2

🔗 Blog post located here:  https://www.activecountermeasures.com/malware-of-the-day-understanding-c2-beacons-part-1-of-2
🔗 StatQuest: Histograms, Clearly Explained https://www.youtube.com/watch?v=qBigTkBLU6g
🔗 Register for webcasts, summits, and workshops - 
https://poweredbybhis.com 
🔗 Our Threat Hunting Tool ~ AC-Hunter (Formally AI-Hunter) - 
 https://www.activecountermeasures.com/ac-hunter-features/
🔗 Interactive Demo Space  - 
https://www.activecountermeasures.com/live-demo/

Timeline:
00:00 - Introduction
01:50 - Part 1: Basic Statistical Primer
07:15 - Part 2: C2 Beacons and Their Fundamental Properties
19:36 - Part 3: How Changes in C2 Beacons Affect Their Statistical Properties
29:01 - Conclusion

///Active Countermeasures Open-Source Tools
https://www.activecountermeasures.com/free-tools/

///Active Countermeasures Socials
Twitter: https://twitter.com/ActiveCmeasures
LinkedIn: https://www.linkedin.com/company/active-countermeasures/
Discord: https://discord.gg/threathunter

Educational Threat Hunting Content
FREE 6-Hour Threat Hunt Training: https://www.activecountermeasures.com/hunt-training/
Active Countermeasures Blog: https://www.activecountermeasures.com/blog/
Active Countermeasures YouTube: https://youtube.com/activecountermeasures

Learn Threat Hunting Skills from Antisyphon Training
Entry-Level (Pay-What-You-Can): https://www.antisyphontraining.com/pay-what-you-can/
Advanced: https://www.antisyphontraining.com/advanced-network-threat-hunting-w-chris-brenton/

Active Countermeasures Shirts
https://spearphish-general-store.myshopify.com/collections/active-countermeasures

Our Tribe
Black Hills Infosec: https://www.blackhillsinfosec.com/
Wld West Hackin' Fest: https://wildwesthackinfest.com/
Antisyphon Training: https://www.antisyphontraining.com/

A video summary by Faan Rossouw of the Malware of the Day - Understanding C2 Beacons - Part 1 of 2

🔗 Blog post located here: https://www.activecountermeasures.com/malware-of-the-day-understanding-c2-beacons-part-1-of-2
🔗 StatQuest: Histograms, Clearly Explained https://www.youtube.com/watch?v=qBigTkBLU6g
🔗 Register for webcasts, summits, and workshops -
https://poweredbybhis.com
🔗 Our Threat Hunting Tool ~ AC-Hunter (Formally AI-Hunter) -
https://www.activecountermeasures.com/ac-hunter-features/
🔗 Interactive Demo Space -
https://www.activecountermeasures.com/live-demo/

Timeline:
00:00 - Introduction
01:50 - Part 1: Basic Statistical Primer
07:15 - Part 2: C2 Beacons and Their Fundamental Properties
19:36 - Part 3: How Changes in C2 Beacons Affect Their Statistical Properties
29:01 - Conclusion

///Active Countermeasures Open-Source Tools
https://www.activecountermeasures.com/free-tools/

///Active Countermeasures Socials
Twitter: https://twitter.com/ActiveCmeasures
LinkedIn: https://www.linkedin.com/company/active-countermeasures/
Discord: https://discord.gg/threathunter

Educational Threat Hunting Content
FREE 6-Hour Threat Hunt Training: https://www.activecountermeasures.com/hunt-training/
Active Countermeasures Blog: https://www.activecountermeasures.com/blog/
Active Countermeasures YouTube: https://youtube.com/activecountermeasures

Learn Threat Hunting Skills from Antisyphon Training
Entry-Level (Pay-What-You-Can): https://www.antisyphontraining.com/pay-what-you-can/
Advanced: https://www.antisyphontraining.com/advanced-network-threat-hunting-w-chris-brenton/

Active Countermeasures Shirts
https://spearphish-general-store.myshopify.com/collections/active-countermeasures

Our Tribe
Black Hills Infosec: https://www.blackhillsinfosec.com/
Wld West Hackin' Fest: https://wildwesthackinfest.com/
Antisyphon Training: https://www.antisyphontraining.com/

19 2

YouTube Video VVU2eFBlV1ZxNkxwTHFPWVE0STlodl9RLjBYVWhwbkhmTmZv

Understanding C2 Beacons - Part 1 of 2 | Malware of the Day

Active Countermeasures is passionate about providing quality, educational content for the Infosec and Threat Hunting community. We appreciate your feedback so we can keep providing the type of content the community wants to see. Please feel free to email us with your ideas!

Latest Active Countermeasures Blog Posts: