Endgame San Antonio Threat Hunting Workshop
Hunt and IR teams are tasked to search and eliminate these threats, often after the adversary is deeply entrenched in the network, leaving enterprises vulnerable to theft and disruption. Threat hunting is the proactive detection and elimination of threats without any prior knowledge or known indicators of compromise. The goal is to evict attackers out of enterprise network before any damage and loss occurs – and of course do this when you have no indicator of compromise!Join Endgame Sr. Threat Researchers, Devon Kerr and Paul Ewing, for a hands-on workshop over heavy hors d'oeuvres and drinks as you network with fellow hunters and learn: - The foundation of hunting: Why IOC-based and alert-based hunting is not enough - Hunting on the cheap: SYSMON, Logs, Network data - Hunting at scale: Prevention, In-memory hunt, persistence hunt - Measuring Success: Hunt metrics for organizations to measure value of your hunt program We're currently at capacity for our next workshop on Thursday, October 26, 2017 in San Antonio, TX! Please show your interest in attending a future workshop by sharing your contact information below..