Duration: 01:31:59 Threat feeds are a powerful way to identify attacks that use known infrastructure and malware. Unfortunately, teams can spend a lot of time chasing down alarms triggered by IP addresses that appear on a threat feed. So how…

January 16, 2020

Duration: 01:25:35 Good investigators gather the clues they need to crack a case. The best, analyze those clues, make connections, and solve a case quickly. As a threat hunter, you also need to have an effective set of techniques and…

October 9, 2019

Duration: 1:24:27 Applications are increasingly being containerized, and when that happens, they are likely to find their way to a cluster within a container-orchestration system like Kubernetes. However, containerized applications are only as safe as the Kubernetes cluster they run…

September 17, 2019

Duration: 1:00:30 The MITRE ATT&CK framework is quickly growing in popularity as an effective method to get on the offense of threat detection and response. In this webinar, presenters go beyond definitions and demonstrate how to apply the MITRE ATT&CK…

June 25, 2019

Duration: 01:43:53 If you’re ready to take a deep dive into applying the MITRE ATT&CK framework and learning how to use it in your environment, then this webinar is for you. In this on-demand webinar, LogRhythm threat research engineers join…

June 17, 2019

Too often, when looking for malicious network traffic, you either search for a known threat actor or investigate anomalous traffic that doesn’t look normal. This reactive approach is time consuming and potentially over-reliant on searching for larger concerns. Fortunately, new…

April 24, 2019

If your team still heavily relies on manual processes or struggles with a lack of skilled resources, tools, and budget, then automation and integration could be the answer to improve your security operations. Automating everyday security operations will simplify and…

April 19, 2019

The security industry has recently been abuzz with the MITRE ATT&CK framework, and for good reason. The MITRE ATT&CK framework is an open knowledge base of adversary tactics and techniques based on real-world observations. The MITRE ATT&CK provides a common…

January 31, 2019

There’s no question about it: Legacy SIEMs hinder your ability to achieve your security objectives. Traditional solutions are limited and often lack the flexibility to scale and grow as your security needs increase. To combat today’s threats, you need a…

December 9, 2018

Monitoring your network traffic can help you detect the first signs of misuse or a potential intrusion. But the identity of the user and program behind a potential issue may still be a mystery. To uncover those details and get…

November 27, 2018

In the world of cybersecurity, you don’t just “go threat hunting.” You need to have a target in mind. You need to look in the right places, and have the right tools at your disposal. In this free training session,…

November 20, 2018

The rapid development and adoption of cloud infrastructure, mobile workforces, the Internet of Things (IoT), and other susceptible environments have mandated a reappraisal of security architecture. Modern organizations are recognizing their security posture may not be keeping up with the…

October 29, 2018