Matthew Dunwoody

Matthew Dunwoody (@matthewdunwoody) and Daniel Bohannon (@danielhbohannon) are Applied Security Researchers with FireEye’s Advanced Practices Team, where they research attacker activity and developing effective detection signatures and processes (among other things). Matthew previously worked as an Incident Response consultant with FireEye’s Mandiant consulting group, where he supported and led IR engagements and high-tech crime investigations. Daniel’s areas of expertise include IR investigations, host- and network-based detection research and development, and obfuscation and detection evasion research and tradecraft development. He is the author of the Invoke-Obfuscation, Invoke-CradleCrafter and Invoke-DOSfuscation obfuscation frameworks and the co-author of the Revoke-Obfuscation PowerShell obfuscation detection framework.

• @matthewdunwoody
• Dynamic Presentation Playlist

Presentations:

• 2018-10-04 12:00 - BruCON 0x0A (2018) - $SignaturesAreDead = “Long Live RESILIENT Signatures” wide ascii nocase
• 2016-10-28 10:30 - BruCON 0x08 (2016) - NO EASY BREACH:Challenges and Lessons Learned from an Epic Investigation
• 2016-09-23 16:00 - DerbyCon 6.0 Recharge (2016) - No Easy Breach: Challenges and Lessons from an Epic Investigation
• 2016-01-16 16:00 - ShmooCon XII (2016) - No Easy Breach: Challenges and Lessons Learned from an Epic Investigation   as Matt Dunwoody

Copresenters:

• Nick Carr
  • 2016-09-23 16:00 - DerbyCon 6.0 Recharge (2016) - No Easy Breach: Challenges and Lessons from an Epic Investigation
  • 2016-01-16 16:00 - ShmooCon XII (2016) - No Easy Breach: Challenges and Lessons Learned from an Epic Investigation
• Daniel Bohannon / DBO
  • 2018-10-04 12:00 - BruCON 0x0A (2018) - $SignaturesAreDead = “Long Live RESILIENT Signatures” wide ascii nocase   as Daniel Bohannon