Practical Attack Detection, Analysis, and Response using Big Data, Semantics, and Kill Chains within the OODA Loop

The traditional approach to using toolsets is to treat them as independent entities - detect an event on a device with one tool, analyze the event and device with a second tool, and finally respond against the device with a third tool. The independent detection, analysis, and response processes are...

By

Brian Nafziger

June 3, 2015

All papers are copyrighted. No re-posting of papers is permitted

Related Content

Cybersecurity and IT Essentials, Cybersecurity Insights

October 24, 2024

The ABCs of Cybersecurity

A glossary of cybersecurity terminology that will help you quickly get up to speed on the industry’s terms and meanings.

Why SANS - Blog - Zero Trust - Best Practices for Securing Your Network with Zero Trust Network Access_340 x 340.jpg

Cybersecurity Insights

August 16, 2024

Best Practices for Securing Your Network with Zero Trust Network Access

Zero Trust Network Access has emerged from the rapidly evolving world of cybersecurity as a critical strategy for protecting networks.

Cybersecurity Insights

December 7, 2020

SANS Zoom Backgrounds

Download our Zoom backgrounds!