The Attackers Perspective Through Splunk Data & Workflows


This event qualifies for 1 CPEs


Join us for a presentation where we will explore the recently published NodeZero App for Splunk, allowing direct Splunk ingestion of its penetration test results.

As the industry accelerates toward a threat landscape of attack and defense by algorithm and machine, humans must run at machine speed to manage the stakes of tool misconfiguration, mishandling of logs, and missed patching opportunities. The NodeZero app for Splunk is a force multiplier--combining attacker insights into your unique environment with your existing Splunk data and workflows to enable cybersecurity teams to proactively find and fix internal and external attack vectors before they are exploited.

NodeZero is the world's leading autonomous pentesting solution--a true continuous pentesting SaaS offering that is safe to run in production and requires no persistent or credentialed agents.

During this presentation, attendees will learn how to:
  • Identify logging blind spots
  • Prioritize logging sources
  • Automatically execute SOAR fix actions
  • Build glass tables to observe possible IOCs

Relevant Government Agencies

Other Federal Agencies, Federal Government, State & Local Government


    Event Type
    Webcast


    This event has no exhibitor/sponsor opportunities


    When
    Wed, Aug 17, 2022, 1:00pm - 2:00pm ET


    Cost
    Complimentary:    $ 0.00


    Website
    Click here to visit event website


    Event Sponsors

    Horizon3.ai


    Organizer
    Horizon3.ai Government Team at Carahsoft


    Contact Event Organizer



    Return to search results