Splunk Workshop Wednesdays - Advanced Persistent Threat Hunting with Splunk



APT hunting with Splunk is a modular, hands-on workshop designed to provide a deeper dive into an Advanced Persistent Threat while providing an opportunity for participants to develop hypotheses and hunt. This workshop leverages Splunk and Enterprise Security and introduces how models like the Lockheed Martin Kill Chain, MITRE ATT&CK and Diamond Model can be used to contextualise their hunts. The workshop leverages the popular Boss of the SOC (BOTS) dataset in a multi-hunt format. Users will leave with a better understanding of how Splunk can be used to hunt for threats within their enterprise.


Prerequisites: None

Relevant Government Agencies

Intelligence Agencies, DOD & Military, Other Federal Agencies, Federal Government, State & Local Government

Members who viewed this event also viewed:

  • .conf24
    Tue-Fri, Jun 11-14, 2024, 9:00am - 12:00pm

Event Type
Virtual


This event has no exhibitor/sponsor opportunities


When
Wed, Apr 21, 2021, 12:00pm - 3:00pm


Cost
Complimentary:    $ 0.00


Website
Click here to visit event website


Organizer
Splunk


Contact Event Organizer



Return to search results