Sign up to save your podcasts
Or
Share Investigating Nix Endpoints for Incident Response - Patterson Cake
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
Investigating Nix Endpoints for Incident Response - Patterson Cake
How many endpoint Operating Systems are there?
SPOILER alert – the answer is two!
🛝 Webcast Slides -
https://www.antisyphontraining.com/wp-content/uploads/2026/04/REI-Nix-042026.pdf
Join Patterson Cake, Director of Incident Response at Black Hills Infosec, as he guides through his “rapid endpoint investigations” workflow for the “other” (not Windows) Operating System…*Nix (Linux/Mac).
We’ll learn how to select, acquire, and analyze Linux and Mac investigative artifacts, using Velociraptor offline collector, CatScale, and UAC scripts.
Windows gets a lot of attention and rightfully so!
However, Linux and Mac are part of every enterprise ecosystem and represent a critical attack surface. You need a simple, effective, repeatable plan for investigating these endpoints.
Chapters
- (00:00) - Intro - Investigating Nix Endpoints for Incident Response - Patterson Cake
Credits
Creators & Guests
Chat with your fellow attendees in the BHIS Discord server:
https://discord.gg/bhis
in the #🔴live-chat channel
🔗 Register for FREE Infosec Webcasts, Anti-casts & Summits –
https://poweredbybhis.com
Click here to watch a video of this episode.
Brought to you by:
Black Hills Information Security
https://www.blackhillsinfosec.com
Antisyphon Training
https://www.antisyphontraining.com/
Active Countermeasures
https://www.activecountermeasures.com
Wild West Hackin Fest
https://wildwesthackinfest.com
Click here to view the episode transcript.
View all episodes
By Antisyphon TrainingHow many endpoint Operating Systems are there?
SPOILER alert – the answer is two!
🛝 Webcast Slides -
https://www.antisyphontraining.com/wp-content/uploads/2026/04/REI-Nix-042026.pdf
Join Patterson Cake, Director of Incident Response at Black Hills Infosec, as he guides through his “rapid endpoint investigations” workflow for the “other” (not Windows) Operating System…*Nix (Linux/Mac).
We’ll learn how to select, acquire, and analyze Linux and Mac investigative artifacts, using Velociraptor offline collector, CatScale, and UAC scripts.
Windows gets a lot of attention and rightfully so!
However, Linux and Mac are part of every enterprise ecosystem and represent a critical attack surface. You need a simple, effective, repeatable plan for investigating these endpoints.
Chapters
- (00:00) - Intro - Investigating Nix Endpoints for Incident Response - Patterson Cake
Credits
Creators & Guests
Chat with your fellow attendees in the BHIS Discord server:
https://discord.gg/bhis
in the #🔴live-chat channel
🔗 Register for FREE Infosec Webcasts, Anti-casts & Summits –
https://poweredbybhis.com
Click here to watch a video of this episode.
Brought to you by:
Black Hills Information Security
https://www.blackhillsinfosec.com
Antisyphon Training
https://www.antisyphontraining.com/
Active Countermeasures
https://www.activecountermeasures.com
Wild West Hackin Fest
https://wildwesthackinfest.com
Click here to view the episode transcript.