Satisnet Ltd, Suite B, Building 210, The Village, Butterfield Business Park, Great Marlings, Luton, Bedfordshire, LU2 8DL enquiry@satisnet.co.uk
+44 (0) 1582 434320

Threat Hunting Workshop with Active Countermeasures

Threat Hunting Workshop with Active Countermeasures

Date: 2nd-3rd October 2019
Time: 10am – 4pm
Location: Satisnet SOC – Bedfordshire, LU2 8DL
Cost: Free of Charge

About Active Countermeasures

Active Countermeasures, born out of the United States, are a team of like-minded security experts who believe in giving back to the security community – hence the Threat Hunting workshop co-hosted with Satisnet! With 15+ years of developing security training classes for SANS, the team is also behind the RITA framework – Real Intelligence Threat Analytics.

Active Countermeasures have created a commercial tool, AI-Hunter, to continuously hunt your network and uncover signs of command & control activity, actively integrating into your existing security investment. AI-Hunter identifies each of your systems’ threat scores compared to other hosts on your network – to determine which of your internal systems have been compromised, covering modules such as; SIEM/Slack Alerting, Beaconing Detection, DNS Tunnelling Detection, among many more.

The workshop will be delivered by William Stearns – Active Countermeasures’ Advanced Threat Hunting Specialist

Who Should Attend?

Companies with large Security Operations Centres (SOCs) and MSSPs

Agenda Highlights

Day One

  • Threat Hunting – The Basics
    • Overview and understanding of threat hunting
  • Threat Hunting – As a Process
    • In detail coverage of threat hunting
  • AI-Hunter – Overview/Experience
    • Hands-on labs and threat hunting scenarios*

Day Two

  • AI-Hunter Install
    • Overview of deployment strategy/processes
  • Working with Bro/Zeek
    • Integrations with the network analysis framework
  • Proof of Concepts (PoCs) with the PiSensor
  • Hosting AI-Hunter in the Cloud

 

*Please note – to take part in the hands-on Threat Hunting labs, attendees must bring their own laptops to access the demo portal

 


Event Date
October 2, 2019

Start time / End time
10am - 4pm (BST)