Maximizing Threat Hunting Efficiency with Automated Queries

  • Thursday, 21 Nov 2019 1:00PM EST (21 Nov 2019 18:00 UTC)
  • Speakers: Eric Hulse, Daniel Bates

Security analysts consume and process thousands of threat intelligence indicators every day.'the vast majority of these are simple atomic or computed indicators such as IPs, domain names, file hashes, and signatures. While these are important pieces of the threat hunting puzzle, searching on these parameters can be time consuming, making it difficult to get to the heart of your threat hunt. '

Join our webinar to learn how you can automate these queries with Cisco Threat Response and AMP for Endpoints. We'll also introduce new capabilities that make searching and file analysis even easier including Orbital and Threat Grid File Analysis. These tools give security professionals time back to conduct research and build truly effective threat hunts.