You can panic now. Host Protection is (mostly) deadby Rob Lee via SANS Digital Forensics

Is host-based detection dead? No one has been able to see the APT circumvent common defenses because victims rarely share specific attack details. Until now. A real world APT Attack results in surprising findings in how effective sophisticated host based defenses are ineffective. Starting from an initial attack through data ex-filtration, this presentation will cover many of the tactics and techniques used by attackers to bypass many of the host based controls used in many organisations today.

Published 24 March 2015