In this webinar series, Jake Williams takes a hands-on approach to forensics packet analysis, using real-world examples to demonstrate how to analyze network packet data to uncover and investigate threats. The series takes a protocol-by-protocol approach. It is an ideal introduction to packet forensics for beginners and a great source of expert tips and tricks for more experienced security analysts. In this episode Jake takes a deep dive into DNS.

The goal of SecOps teams is to monitor, detect, investigate, and respond to suspicious activity and events. This often leaves them in a reactive state — with minimal opportunity to reduce false-positives and innovate. It doesn’t have to be this way, though. One key aspect of forward-looking, mature SecOps programs is the ability to gather context from data sources to inform — and expedite — investigations. In this sessi...

In addition to highlighting trends in vulnerability management, this year's survey digs a little deeper into how cloud and the expanding remote workforce affected the ways in which organizations handle reporting and remediation. On this webcast, sponsor representatives will join the survey author for an analysis of the survey, and share their thoughts on emerging vulnerability management trends. Click the Get Registered button to sign up for t...

Ransomware groups repeatedly deceive AV and EDR solutions. News stories abound of companies large and small that, regardless of their defenses, get hit by ransomware attacks. How? Threat actors take advantage of the weaknesses of mainstream AV and EDR platforms. In this webinar, Morphisec CTO Michael Gorelik will simulate a ransomware attack that bypasses detection-based defenses before reaching its goal and encrypting the entire enterprise ne...

External threats are easy to comprehend for people outside of the security team, and therefore over-represented in business literature: a ‘hacker’ (portrayed as a dark silhouette behind a computer with a hoodie on, for some reason) bangs on the keyboard, probing your defenses until they find some sensitive info that was left public via misconfiguration. There’s sometimes sensitive data in that public bucket, but usually that...

Ransomware attacks have become some of the most prolific and public intrusions over recent years. Within a matter of hours, organizations can go from normal operations to having an inoperable network and being extorted for tens of millions of dollars. On this webcast, SANS instructor and author Matt Bromiley, as well as sponsor representatives, will share their thoughts on modern detection and response techniques for ransomware breaches.

Join us for this NEW VERSION of Cyber42 on the hot topic of ransomware. This version of the game represents how a fictional organization responds to a ransomware event against the organization. Responses to ransomware events require not only managing the event but also the expectations of key stakeholders and external parties. Interactive. 90-minutes long. Play to win! Who Should Attend: Chief Information Security Officers Information security...

To be effective, data protection has to be everywhere, from the server to the endpoint, at the office and at home, throughout the cloud and across the web. A company's system must be able to detect data leakage from any path, quickly apply real-time data protection policies, automate incident workflows, and alert the IT team as needed for further investigation. Having an effective understanding of how and where a company's data is stored is es...

The 2nd annual SANS Cyber Solutions Fest aims to connect cybersecurity professionals of all levels with the latest solutions, tools, and techniques to combat today's cybersecurity threats. Featuring 4 unique levels: Threat Hunting & Intel, SOC & SOAR, MITRE ATT&ACK®, and Cloud Security Network in real-time with over 30 sponsors and learn from top industry experts Join interactive panel discussions, discover job opportunities, c...

Defending against attacks is an ongoing challenge with new threats emerging all the time. Do you want to enhance your current skill set and become even better at defending your organization? Are you looking for the latest ways to mitigate the most recent attacks? The blue team represents information security professionals on the front line of defending anorganization’s critical assets and systems against attacks and threats from adversar...