I think I can unequivocally state that this book was the most frustrating but probably the most enjoyable to write so far.
As opposed to previous scenarios where we targeted companies with hopeless security, this book embarks us on what we might call an adversarial environment: SIEM, machine learning security tools and a dedidacted SOC team. All with the sole purpose of catching hackers like ourselves.
Imagine a hacking engagement where running a simple damn portscan gets you kicked of the network…Exilirating right?!
This adds a whole new dimension to the game by forcing us to fully anticipate future implications of using this or that technique to elevate privileges, propagate laterally, search for critical files, etc.
Furthermore, we will make sure to address/bypass all new Windows 10 security features (AMSI, Script Block logging,…) as well as some interesting advanced tools advertised as “next-generation” antivirus and IDS (Windows ATA and ATP).
In short, I promise that it will be worth your while 🙂