Real-Time Threat Hunting - SANS Threat Hunting & Incident Response Summit 2017

  Рет қаралды 38,203

SANS Digital Forensics and Incident Response

SANS Digital Forensics and Incident Response

Күн бұрын

Пікірлер
@Rafsangani
@Rafsangani 6 жыл бұрын
I addition to collecting traces on one side, you can do the search live for anything coming into the network by using tshark and directing the trace to your python scripts to capture what you are looking for and display it instantly. Or send the output to another short file. Use network tapping device to collect/monitor network instead of running wireshark on the server itself.
@hitnahsin
@hitnahsin 4 жыл бұрын
i am not sure if we can run Wireshark on big environment.I think this is suitable for a small organization.A big organization have different security zones and its tough for one to actually know where to have a tap.You have taps on IDS/IPS and now with security products like Crowdstrike you are able to get memory forensics and traffic path on a single dashboard....as we progress looks like eventually the programmers will be looking at a console which shows the traffic of their system.The lines are fast disappearing.
@prince10000able
@prince10000able 7 жыл бұрын
Awesome tool and talk Tim 👍 Lots to learn
@Anon-tj7qb
@Anon-tj7qb 6 жыл бұрын
Nice to see it used without the buzz
@sasikumarreddykummetha2299
@sasikumarreddykummetha2299 6 жыл бұрын
hii sir how to learn threat hunting course. please tell me sir any websites are any documents . thanks sasikumar
@anshuman.deshmukh
@anshuman.deshmukh 6 жыл бұрын
It's really awesome for the malware hunters
@kareenyirenkyi6720
@kareenyirenkyi6720 4 жыл бұрын
Thanks 😘
@davelundie2866
@davelundie2866 6 жыл бұрын
Great talk
Threat Hunting with Network Flow - SANS Threat Hunting Summit 2017
18:30
SANS Digital Forensics and Incident Response
Рет қаралды 19 М.
SANS Webcast: Effective (Threat) Hunting Techniques
54:01
SANS EMEA
Рет қаралды 30 М.
How to treat Acne💉
00:31
ISSEI / いっせい
Рет қаралды 108 МЛН
To Brawl AND BEYOND!
00:51
Brawl Stars
Рет қаралды 17 МЛН
Support each other🤝
00:31
ISSEI / いっせい
Рет қаралды 81 МЛН
Гениальное изобретение из обычного стаканчика!
00:31
Лютая физика | Олимпиадная физика
Рет қаралды 4,8 МЛН
Threat Intelligence At Microsoft: A Look Inside - Cyber Threat Intelligence Summit 2017
22:16
SANS Digital Forensics and Incident Response
Рет қаралды 24 М.
All Things Entry Level Digital Forensics and Incident Response Engineer DFIR
19:16
Gerald Auger, PhD - Simply Cyber
Рет қаралды 28 М.
My “Aha!” Moment - Methods, Tips, & Lessons Learned in Threat Hunting - SANS THIR Summit 2019
33:41
SANS Digital Forensics and Incident Response
Рет қаралды 15 М.
Detecting & Hunting Ransomware Operator Tools: It Is Easier Than You Think!
1:21:16
SANS Digital Forensics and Incident Response
Рет қаралды 27 М.
Cybersecurity Threat Hunter - Threat Hunter Salary and Skills You Need
11:51
Ken Underhill - Cybersecurity Training
Рет қаралды 1,7 М.
Threat Hunting via Sysmon - SANS Blue Team Summit
51:01
SANS Institute
Рет қаралды 63 М.
Investigating WMI Attacks
1:00:43
SANS Digital Forensics and Incident Response
Рет қаралды 27 М.
How to treat Acne💉
00:31
ISSEI / いっせい
Рет қаралды 108 МЛН