A look at some of the low-cost tools that can be utilized by Blue Team members. Tools include Redline for forensics, EMET for computer hardening, Zed Attack Proxy for web application security, and PDQ Deploy and Inventory for third party patch management. Descriptions of each tool, experiences and how I've used each of these tools, and short demos of each tool.

U.S. Navy Veteran 2001-2007 Sysadmin, network administrator, now information security officer for state of South Carolina. ColaSec organizer, producer of PVC Security podcaster, and regular BSides attendee and photographer of South East.

Back to Derbycon 2015 video list