The Attackers Perspective Through Splunk Data & Workflows
This event qualifies for 1 CPEs
Join us for a presentation where we will explore the recently published NodeZero App for Splunk, allowing direct Splunk ingestion of its penetration test results.
As the industry accelerates toward a threat landscape of attack and defense by algorithm and machine, humans must run at machine speed to manage the stakes of tool misconfiguration, mishandling of logs, and missed patching opportunities. The NodeZero app for Splunk is a force multiplier--combining attacker insights into your unique environment with your existing Splunk data and workflows to enable cybersecurity teams to proactively find and fix internal and external attack vectors before they are exploited.
NodeZero is the world's leading autonomous pentesting solution--a true continuous pentesting SaaS offering that is safe to run in production and requires no persistent or credentialed agents.
During this presentation, attendees will learn how to:
- Identify logging blind spots
- Prioritize logging sources
- Automatically execute SOAR fix actions
- Build glass tables to observe possible IOCs
Relevant Government Agencies
Other Federal Agencies, Federal Government, State & Local Government
Event Type
Webcast
This event has no exhibitor/sponsor opportunities
When
Wed, Aug 17, 2022, 1:00pm - 2:00pm
ET
Cost
Complimentary: $ 0.00
Website
Click here to visit event website
Event Sponsors
Horizon3.ai
Organizer
Horizon3.ai Government Team at Carahsoft