Common misconceptions and mistakes made in Threat Hunting
Threat Hunting, are you doing it wrong? Are your preconceived notions of what you need and how it “has to be done” holding you back? While threat hunting isn't some super-sophisticated technique or operational technology, I’ve run into many organizations making the same mistakes time and time again. Industry marketing has convoluted the public's perception of what hunting is and how it can/should be done. By the end of the talk you’ll walk away with a fresh perspective along with some actionable information to establish a program or solidify your current one. Christopher Witter, Engineering Manager, Spotify - / mr_cwitter View upcoming Summits: http://www.sans.org/u/DuS Download the presentation slides (SANS account required) at https://www.sans.org/u/1iaE #ThreatHuntingSummit #ThreatHunting
Building Better Hunt Data
Threat-Informed Detection Engineering
Deconstructing the Analyst Mindset
Threat Hunting Unlocked: How to Uplevel Your Threat Hunting With the PEAK Framework and Splunk
The Cycle of Cyber Threat Intelligence
Find_Evil - Threat Hunting | SANS@MIC Talk
Hunting and Scoping A Ransomware Attack
How to Build Threat Hunting into Your Security Operations | Red Canary
FOR508 - Advanced Incident Response and Threat Hunting Course Updates: Hunting Guide
Threat Hunting Beacon Analysis
Threat Hunting in the Modern SOC with Splunk
Why Israel is the World's Top Hacking Nation | VICE: Cyberwar | Blueprint
Threat Hunting — Demystified
DEF CON 33 - Cash, Drugs, and Guns - Why Your Safes Aren't Safe - Mark Omo, James Rowley
Cyber Threat Hunting: Identify and Hunt Down Intruders
ACM Webcast: Network Threat Hunting Runbook
Threat Intelligence At Microsoft: A Look Inside - Cyber Threat Intelligence Summit 2017
The SOC Puzzle: Where Does Threat Hunting Fit? | 2020 Threat Hunting & Incident Response Summit
