Leveraging Threat Intelligence Feed Metadata for Better Context and Accuracy
Duration: 01:31:59 Threat feeds are a powerful way to identify attacks that use known infrastructure and malware. Unfortunately, teams can spend a lot of time chasing down alarms triggered by IP addresses that appear on a threat feed. So how…
Read More
January 16, 2020
Pushing the Limits of Network Security Monitoring
Duration: 01:25:35 Good investigators gather the clues they need to crack a case. The best, analyze those clues, make connections, and solve a case quickly. As a threat hunter, you also need to have an effective set of techniques and…
Read More
October 9, 2019
Kubernetes Audit Logging | Kubernetes Security
Duration: 1:24:27 Applications are increasingly being containerized, and when that happens, they are likely to find their way to a cluster within a container-orchestration system like Kubernetes. However, containerized applications are only as safe as the Kubernetes cluster they run…
Read More
September 17, 2019
Aligning Security Solutions with MITRE ATT&CK
Duration: 1:00:30 The MITRE ATT&CK framework is quickly growing in popularity as an effective method to get on the offense of threat detection and response. In this webinar, presenters go beyond definitions and demonstrate how to apply the MITRE ATT&CK…
Read More
June 25, 2019
Threat Detection for Common MITRE ATT&CK Techniques
Duration: 01:43:53 If you’re ready to take a deep dive into applying the MITRE ATT&CK framework and learning how to use it in your environment, then this webinar is for you. In this on-demand webinar, LogRhythm threat research engineers join…
Read More
June 17, 2019
Malicious Traffic: Understanding What Does and Doesn’t Belong on Your Network
Too often, when looking for malicious network traffic, you either search for a known threat actor or investigate anomalous traffic that doesn’t look normal. This reactive approach is time consuming and potentially over-reliant on searching for larger concerns. Fortunately, new…
Read More
April 24, 2019