Skip to main content

Posts

Featured

Threat Hunting Summit 2020 Summary

       This year's SANS Threat Hunting Summit was virtual due to the current Covid-19 pandemic. I had the opportunity to attend and participate as part of the advisory board. A big congrats to the first time\veteran presenters and a thank you to the SANS team for making the summit possible. We had great content that was well received by attendees.       A great quote from the summit was "Adversaries shouldn't feel safe" from Ashley Pearson's The SOC Puzzle: Where does threat hunting fit? presentation. As threat hunters we control the home turf and have a say whether an adversary will continue to persist or to what point within their objectives will they reach. Therefore they should not feel safe as we will detect, hunt them down, remediate and learn. <--- my take on the quote 😉 Below are some topics I noticed from the presentations. Have a focus in your hunts It is important to focus on a certain topic when performing a hunt whether it is a threat of c

Latest Posts

ED without the R Lab Setup

A word on certs and RFC...

Book Review: Windows Registry Forensics 2E

BSides NOLA and Threat Hunting

The Curious Case Of The Chan Pelana Device

Hello World....