Mattias Borg
Cyber Security Geek
Stockholm, Sweden
Incident Response Specialist with focus on Threat hunting in the Microsoft defense stack.
Cyber Security consultant helping customers automate their incident response capabilities to give them more time to focus on the advanced threats.
Researching vulnerabilities when not working for customers.
MSRC Security Research Acknowledgement (August 2018)
Speaker:
Workplace Ninja Summit 2021, Nordic Virtual Summit 2021, Workplace Ninja Summit 2020, Sans Threat Hunting & IR Summit, GRC 2019, TechDays Swe 2018, GRC 2018, Techorama BE 2018, TechDays Swe 2017, GRC 2017, DefCon 2016 - SE village, SEC-T 2016 and mixed Community meet-ups
#SOAR #DFIR #ThreatHunting
Certified Ethical Hacker
#HappyHunting
Links
Area of Expertise
Topics
Live response with Microsoft Defender for Endpoint
Many organizations are moving to the Microsoft Defender for Endpoint solution but how should you work with the different features and capabilities?
In this session Mattias and Stefan will share how to extract forensic artefacts from an endpoint and respond to threats with the Live Response feature in Microsoft Defender for Endpoint and use tools from the security community
Detect and Respond with Microsoft 365
How can we detect Incidents and more importantly how can we respond in an efficient way to the Incidents that will occur when we get enhanced detection capabilities. In this session we will give you insights to an efficient Automated Security Incident Response Process.
Defender ATP - Hardcore Deep Dive
This session is deep diving into Microsoft Defender ATP. Advanced Threat Hunting, Live response and services running on the client side
Deep dive threat hunting
Extend your detection and response capabilities with the Defender ATP advanced threat hunting.
Mattias and Stefan will deep dive in the hunting capabilities and advanced queries to not only discover additional detections,
but also map the attack chain.
A great opportunity to learn how to fully use your capabilities of the product.
How to build a Security Operations Center with Microsoft Technologies
In this session we will walk you through what capabilities you need and how you can use different Microsoft Technologies to build your Security Posture.
Take care of your Clients you don't WannaCry
In this session we will walk you through how to Build a Secure Client that is resistant against modern Threats. We will cover the Security Stack of a Client including Windows 10 Security Features and Windows Defender ATP
From Code to Cash
In this session we will walk you through how hackers are exploiting companies and what you can do to stop them from being successful. We will walk you through one of the biggest cases where 700 companies in Sweden where compromised by a group of hackers.
Tech Days 2017
Def Con 24
Social Enginering Village - Scam caller session