DEF CON Forum Site Header Art


No announcement yet.

Intrusion Analysis and Threat Hunting with Open Source Tools

  • Filter
  • Time
  • Show
Clear All
new posts

  • Intrusion Analysis and Threat Hunting with Open Source Tools

    In today's threat landscape, sophisticated adversaries have routinely demonstrated the ability to compromise enterprise networks and remain hidden for extended periods of time. In Intrusion Analysis and Threat Hunting with Open Source Tools, you will learn how to dig deep into network traffic to identify key evidence that a compromise has occurred, learn how to deal with new forms of attack, and develop the skills necessary to proactively search for evidence of new breaches. We will explore key phases of adversary tactics and techniques - from delivery mechanisms to post-infection traffic to get hands-on analysis experience. Open-source tools such as Suricata and Moloch will be utilized to generate data, perform exhaustive traffic analysis, and develop comprehensive threat hunting strategies. By the end of this workshop, you will have the knowledge and skills necessary to discover new threats in your network.

    Speaker(s): Jack Mott, Jason Williams, Josh Stroschein

    Location: Packet Hacking Vlg


    Event starts: 2020-08-07 13:00 (01:00 PM) PDT (UTC -07:00)

    Event ends: 2020-08-07 15:00 (03:00 PM) PDT (UTC -07:00)

    For the most up-to-date information, please either visit, or use HackerTracker, which is available for iOS and Android. This is an automated message, and this data was last modified 2020-07-29T01:18 (UTC).
    August 7, 2020 13:00
    August 7, 2020 15:00
    Packet Hacking Vlg

  • #2
    I was hoping to attend this workshop but eventbrite shows only the wireshark plugin workshop. Are there still seats available for this as well?