The Power of Open-Source Tools for Network Detection & Incident Response

Thursday, 27 Oct 2022 10:30AM EDT (27 Oct 2022 14:30 UTC)
Speakers: Matt Bromiley, Ashley Nurcombe

When conducting incident response, EDR and firewall technologies can only show you so much. The breadth of network traffic provides an unrivalled source of evidence and visibility. Open-source security technologies such as Zeek, Suricata, and Elastic can deliver powerful network detection and response capabilities, furthermore the global communities behind these tools can also serve as a force multiplier for security teams, often accelerating response times to zero-day exploits via community-driven intel sharing.Join this webinar to learn:

The benefits of popular open-source technologies used in network DFIR
Real life use cases for these tools
How to leverage these within your organisation

Login to Register

Sponsor

Related Content

DFIR - Blog - Women In Russian-speaking Cybercrime_340 x 340.jpg

Digital Forensics, Incident Response & Threat Hunting

November 18, 2024

Women In Russian-Speaking Cybercrime: Mythical Creatures or Significant Members of Underground?

Women’s roles in Russian-speaking cybercrime, though less visible than men’s, are evolving and significant.

Anastasia Sentsova

Anastasia Sentsova

Why SANS - Blog - Zero Trust - Zero Trust Network Architecture- Ready for Prime Time__340 x 340.jpg

November 15, 2024

Zero Trust Network Architecture: Ready for Prime Time?

This infographic outlines the principles of implementing a Zero Trust architecture by focusing on strategies like micro-segmentation and continuous authentication.For a deeper dive into these topics, download the SANS Zero Trust Strategy Guide and watch the YouTube video to gain actionable...

Why SANS - Blog - Critical Infrastructure - Supply Chain Attacks- Why Security Leaders Must Act Now_340 x 340.jpg

November 15, 2024

Fortifying the Supply Chain: Strategies for Modern Security Challenges

This infographic emphasizes securing the supply chain against modern threats by distinguishing supply-chain risks from internal risks and recommending best practices for managing external dependencies.For a deeper dive into these topics, download the ICS Strategy Guide and watch the YouTube video...