Whether it’s the result of a misunderstanding or a misconfiguration, security software doesn’t always work as expected. Red Canary built Atomic Red Team to validate assumptions about the telemetry produced by EDR tools. Since 2017, more than 80 individuals have contributed to the project, growing it from a humble set of basic tests to a robust framework with atomics for nearly 160 ATT&CK techniques.

Pre-requisites: General understanding of information security, detection and red teaming.

Presenters