Doron Karmi works as a senior Cloud Researcher at Mitiga. Prior to working at Mitiga, Doron worked as a malware analyst and threat hunter for large organizations.
Today, Doron researches potential attacks on cloud services and SaaS, and investigates incidents.
In this talk, we share our knowledge & expertise on how to hunt and perform IR investigation over Google Workspace logs based on real-world threat hunt focused on data exfiltration from Google Drive. In this presentation, we will show the work of forensic investigator in Google Workspace domain.
We believe this knowledge is necessary for those who want to investigate Google Workspace logs.