WebinarsThreat hunting
Joe Moles

Operationalize your threat hunt with Carbon Black Response

 

Automate your threat hunt with Carbon Black Response

Many mature teams build targeted hunts into scheduled activities, but how do you move from an ad hoc effort to an operational function of your security program? And how do you justify the effort to advance from traditional monitoring to continuous threat hunting? The distinction goes far beyond semantics; it requires a change in core best practices.

This on-demand webinar will help you:

  • Understand the difference between traditional SOC monitoring and continuous, operationalized threat hunting
  • Understand the processes for continuous tuning, development, and targeting of hunt efforts
  • And develop measures based on open standards such as the MITRE ATT&CK framework to focus efforts and move to a continuous model
 
Test your visibility into the top 10 ATT&CK techniques
 
Comparing open source adversary emulation platforms for red teams
 
Invoke-Atomic leaves the nest
 
Testing initial access with “Generate-Macro” in Atomic Red Team