Threat Hunting with Carbon Black and Surveyor

Performing data analysis at scale is no simple task.

Michael Haag, Red Canary’s Director of Advanced Threat Detection & Research, walks through how to use Carbon Black Response and Surveyor to operationalize threat hunting and find evil across an enterprise.

Viewers will learn how to:

Use Surveyor to baseline an environment
Translate hunts into detection criteria
Manage watchlists and feeds at scale

Related Resources

Articles| Atomic Red Team

Comparing open source adversary emulation platforms for red teams

Articles| Atomic Red Team

Invoke-Atomic leaves the nest

Articles| Testing and measurement

Testing initial access with “Generate-Macro” in Atomic Red Team

Articles| Testing and measurement

Testing the Top MITRE ATT&CK Techniques: PowerShell, Scripting, Regsvr32

Webinars•Threat hunting
Michael Haag•

Threat hunting at scale using Carbon Black Response + Surveyor

Performing data analysis at scale is no simple task.

Related Resources

See what it's like to have a partner in the fight.

Experience the difference between a sense of security and actual security.

Webinars•Threat hunting Michael Haag•

Threat hunting at scale using Carbon Black Response + Surveyor

Performing data analysis at scale is no simple task.

Related Resources

See what it's like to have a partner in the fight.

Experience the difference between a sense of security and actual security.

Webinars•Threat hunting
Michael Haag•