{"type":"rich","version":"1.0","provider_name":"Transistor","provider_url":"https://transistor.fm","author_name":"Antisyphon Training Anticasts","title":"Investigating Nix Endpoints for Incident Response - Patterson Cake","html":"<iframe width=\"100%\" height=\"180\" frameborder=\"no\" scrolling=\"no\" seamless src=\"https://share.transistor.fm/e/9bc2e004\"></iframe>","width":"100%","height":180,"duration":4330,"description":"How many endpoint Operating Systems are there?  SPOILER alert – the answer is two!🛝 Webcast Slides -  https://www.antisyphontraining.com/wp-content/uploads/2026/04/REI-Nix-042026.pdf Join Patterson Cake, Director of Incident Response at Black Hills Infosec, as he guides through his “rapid endpoint investigations” workflow for the “other” (not Windows) Operating System…*Nix (Linux/Mac). We’ll learn how to select, acquire, and analyze Linux and Mac investigative artifacts, using Velociraptor offline collector, CatScale, and UAC scripts. Windows gets a lot of attention and rightfully so!  However, Linux and Mac are part of every enterprise ecosystem and represent a critical attack surface. You need a simple, effective, repeatable plan for investigating these endpoints.ChaptersCreditsChat with your fellow attendees in the BHIS Discord server:https://discord.gg/bhisin the #🔴live-chat channel🔗 Register for FREE Infosec Webcasts, Anti-casts & Summits – https://poweredbybhis.comBrought to you by:Black Hills Information Security https://www.blackhillsinfosec.comAntisyphon Traininghttps://www.antisyphontraining.com/Active Countermeasureshttps://www.activecountermeasures.comWild West Hackin Festhttps://wildwesthackinfest.com","thumbnail_url":"https://img.transistorcdn.com/HDXnAmbV7tTWd3YmKfUnB-pmJJ9MLowmoA_tR95bY9Y/rs:fill:0:0:1/w:400/h:400/q:60/mb:500000/aHR0cHM6Ly9pbWct/dXBsb2FkLXByb2R1/Y3Rpb24udHJhbnNp/c3Rvci5mbS8xZDlh/OGUwM2FhMmM5ZTQ5/YTA0MDI3ZjI0NGM5/ZmNlMS5wbmc.webp","thumbnail_width":300,"thumbnail_height":300}