#lotlattack — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #lotlattack, aggregated by home.social.
-
"Living off the Land" (LotL) in cybersecurity refers to threat actors using existing tools and features within a target system or network to conduct their operations, rather than deploying external or specialized malware. This approach can help threats avoid detection by blending in with legitimate activities and leveraging tools like system scripts, administrative tools, or built-in utilities to achieve their objectives.
Over the following series of posts, I'll describe techniques for identifying threat actors engaged in Living off the Land (LotL). The posts will be broken into sections, such as, techniques for identifying threats in a Microsoft Windows environment, techniques for a Linux environment, network threats, lateral movement, and threat intelligence, among others.
I hope you find this topic beneficial.
I'll be providing a talk about this subject at the upcoming @GrrCON conference in Grand Rapids, MI, September 26-27, 2024, https://www.grrcon.com