Upgrade to Pro — share decks privately, control downloads, hide ads and more …

インシデントレスポンス演習 II / Incident Response Exercise II

Kenji Saito
PRO
July 15, 2024
Technology
0
81

インシデントレスポンス演習 II / Incident Response Exercise II

早稲田大学大学院経営管理研究科「サイバーセキュリティ」2024 夏の第11-12回で使用したスライドです。

Kenji Saito
PRO

July 15, 2024
Tweet

More Decks by Kenji Saito

See All by Kenji Saito
続・インクルーシブな社会へ / Continuing Towards an Inclusive Society
ks91
PRO
0
19
AGI (人工一般知能) と創る新しく奇妙な社会 / New and Stranger Society built with AGI
ks91
PRO
0
64
回帰分析/大規模言語モデルと統計 / Regression Analysis, Large Language Models and Statistics
ks91
PRO
0
69
多重比較/相関分析 / Multiple Comparison and Correlation Analysis
ks91
PRO
0
65
アカデミーキャンプ 2025冬「考えるのは奴らだ」 / Academy Camp 2025 Winter - Live and Let Think DAY 3
ks91
PRO
0
62
アカデミーキャンプ 2025冬「考えるのは奴らだ」 / Academy Camp 2025 Winter - Live and Let Think DAY 2
ks91
PRO
0
48
アカデミーキャンプ 2025冬「考えるのは奴らだ」 / Academy Camp 2025 Winter - Live and Let Think DAY 1
ks91
PRO
1
74
インクルーシブな社会へ / Toward an Inclusive Society
ks91
PRO
0
22
P 値と有意差/分散分析 / P-value, Significant Difference and Analysis of Variance
ks91
PRO
0
71

Other Decks in Technology

See All in Technology
AWSアカウントのセキュリティ自動化、どこまで進める? 最適な設計と実践ポイント
yuobayashi
7
610
Share my, our lessons from the road to re:Invent
naospon
0
140
スキルだけでは満たせない、 “組織全体に”なじむオンボーディング/Onboarding that fits “throughout the organization” and cannot be satisfied by skills alone
bitkey
0
180
ウォンテッドリーのデータパイプラインを支える ETL のための analytics, rds-exporter / analytics, rds-exporter for ETL to support Wantedly's data pipeline
unblee
0
130
NFV基盤のOpenStack更新 ~9世代バージョンアップへの挑戦~
vtj
0
350
データベースの負荷を紐解く/untangle-the-database-load
emiki
2
510
4th place solution Eedi - Mining Misconceptions in Mathematics
rist
0
140
開発組織を進化させる!AWSで実践するチームトポロジー
iwamot
2
370
Fraxinus00tw assembly manual
fukumay
0
100
IAMポリシーのAllow/Denyについて、改めて理解する
smt7174
2
210
JavaにおけるNull非許容性
skrb
2
2.6k
Two Blades, One Journey: Engineering While Managing
ohbarye
4
2k

Featured

See All Featured
Statistics for Hackers
jakevdp
797
220k
Scaling GitHub
holman
459
140k
ピンチをチャンスに:未来をつくるプロダクトロードマップ #pmconf2020
aki_iinuma
114
50k
Rebuilding a faster, lazier Slack
samanthasiow
80
8.9k
The Myth of the Modular Monolith - Day 2 Keynote - Rails World 2024
eileencodes
21
2.5k
Designing Experiences People Love
moore
140
23k
10 Git Anti Patterns You Should be Aware of
lemiorhan
PRO
656
59k
Build The Right Thing And Hit Your Dates
maggiecrowley
34
2.5k
A designer walks into a library…
pauljervisheath
205
24k
Sharpening the Axe: The Primacy of Toolmaking
bcantrill
40
2k
Principles of Awesome APIs and How to Build Them.
keavy
126
17k
How to Create Impact in a Changing Tech Landscape [PerfNow 2023]
tammyeverts
49
2.3k

Transcript

  1. Hardening for cyber security — generated by Stable Diffusion XL

    v1.0 2024 11-12 II (WBS) 2024 11-12 II — 2024-07-15 – p.1/33

  2. https://speakerdeck.com/ks91/collections/cyber-security-2024-summer 2024 11-12 II — 2024-07-15 – p.2/33

  3. ( ) 1 6 10 (1) • 2 6 10

    (2) • 3 6 17 • 4 6 17 • 5 6 24 I ( ) • 6 6 24 I ( ) • 7 7 1 • 8 7 1 • 9 7 8 • 10 7 8 • 11 7 15 II ( ) • 12 7 15 II ( ) • 13 7 22 14 7 22 W-IOI / ( ) 2024 11-12 II — 2024-07-15 – p.3/33

  4. ( 20 ) 1 • 2 • 3 • 4

    (TCP/IP ) • 5 • 6 • 7 • 8 • 9 • 10 World Wide Web • 11 Web API • 12 • 13 git GitHub • 14 • SSH • (6/24 ) / (2 ) OK / 2024 11-12 II — 2024-07-15 – p.4/33

  5. ( ) + + 2024 11-12 II — 2024-07-15 –

    p.5/33

  6. II 10 2024 11-12 II — 2024-07-15 – p.6/33

  7. 2024 11-12 II — 2024-07-15 – p.7/33

  8. 5. (1) ( ) (2) I OvenAI CEO 2024 7

    11 ( ) 23:59 JST Waseda Moodle (Q & A ) 2024 11-12 II — 2024-07-15 – p.8/33

  9. . . . . . . 12 9 (7/14( )

    ) ( ) 2024 11-12 II — 2024-07-15 – p.9/33

  10. I CEO CEO CEO ⇒ NPC CEO 2024 11-12 II

    — 2024-07-15 – p.10/33

  11. W M ⇒ 2024 11-12 II — 2024-07-15 – p.11/33

  12. N ⇒ 2024 11-12 II — 2024-07-15 – p.12/33

  13. A ( ) ( ) ( ) ( ) (

    ) AI ⇒ 2024 11-12 II — 2024-07-15 – p.13/33

  14. T ⇒ 2024 11-12 II — 2024-07-15 – p.14/33

  15. M OvenAI ⇒ 2024 11-12 II — 2024-07-15 – p.15/33

  16. Y CSIRT ⇒ 2024 11-12 II — 2024-07-15 – p.16/33

  17. W E2E ⇒ E2E (End-to-End) (end) (end) 2024 11-12 II

    — 2024-07-15 – p.17/33

  18. A ⇒ 2024 11-12 II — 2024-07-15 – p.18/33

  19. L ⇒ 2024 11-12 II — 2024-07-15 – p.19/33

  20. II 15 2024 11-12 II — 2024-07-15 – p.20/33

  21. 4 Discord ( ) ( ) AI AI AI 2024

    10 14 ( ) ( ) ( ) 112 ^^; 21:55 21:45 10 21:45 2024 11-12 II — 2024-07-15 – p.21/33

  22. 112 (1/2) OvenAI CEO ( COO ) ^^; AI 2024

    11-12 II — 2024-07-15 – p.22/33

  23. 112 (2/2) OvenAI 5. . . . CSIRT (?) AI

    (← ) 2024 11-12 II — 2024-07-15 – p.23/33

  24. A B B A B B 5 2024 11-12 II

    — 2024-07-15 – p.24/33

  25. AI (NPC : Non Player Character) @ / OvenAI @ceo

    : CEO ( ) : @cto : CTO ( ) : @eng : : ( ), ( ), ( , ) @cr : : @pr : OvenAI : @br : ( ) : @personnel : : @sns : W : @tv : TV : @police : ( ) : @caa : : 2024 11-12 II — 2024-07-15 – p.25/33

  26. (cto) (eng) – (1/n) APT (Advanced Persistent Threat; ) :

    APT33 ( ), APT29 ( ), APT38 ( ), etc. AWS (Amazon Web Services; ) Amazon.com 2024 11-12 II — 2024-07-15 – p.26/33

  27. → 2024 11-12 II — 2024-07-15 – p.27/33

  28. 10 5 ( ) ( ) CSIRT (Computer Security Incident

    Response Team) 1 CISO ( ) ← : 1 ( ) 1 ( Discord ) ( ^^;) ( ) CSIRT Zoom OvenAI CTO CSIRT CEO “ ” 2024 11-12 II — 2024-07-15 – p.28/33

  29. 10 21:45 21:55 2024 11-12 II — 2024-07-15 – p.29/33

  30. 2024 11-12 II — 2024-07-15 – p.30/33

  31. 6. II (1) ( ) (2) 2024 7 18 (

    ) 23:59 JST Waseda Moodle (Q & A ) 2024 11-12 II — 2024-07-15 – p.31/33

  32. (1 ) 2024 11-12 II — 2024-07-15 – p.32/33

  33. 2024 11-12 II — 2024-07-15 – p.33/33