5 Days Left to Get an iPad mini, Surface Go 2, or Take $300 Off with OnDemand Training!

Northern VA Winter - Reston 2018

Reston, VA | Mon, Jan 15 - Sat, Jan 20, 2018
This event is over,
but there are more training opportunities.
 

Monitoring and Incident Response on a Shoestring Budget

  • Joff Thyer
  • Thursday, January 18th, 7:15pm - 8:15pm

As pen testers, we are familiar with the techniques used to attack an environment. Knowing these techniques informs us with respect to various methods of potential detection. In fact, we are often asked by our clients what they could have done to detect the methods we used to successfully compromise their environment. There are so many great community projects out there that allow defenders to assemble their own toolkit for tactical, and focused environment monitoring. In talk, I will cover a continuing evolution of how you can use free and open source tools to help detect potential attackers in your network.

Bonus Sessions

The following bonus sessions are open to all paid attendees at no additional cost. There are many different types of events that fall into these categories:

  • SANS@Night: Evening presentations given after day courses have ended. This category includes Keynotes.
  • Special Events: SANS-hosted events and other non-technical recreational offerings. This category includes, but is not limited to, Receptions and Information Tables.
Monday, January 15
Session Speaker Time Type
General Session - Welcome to SANS Paul Henry Monday, January 15th, 8:00am - 8:30am Special Events
OBSESSED - How to Be Wildly Successful Dr. Eric Cole Monday, January 15th, 7:15pm - 9:15pm Keynote
Tuesday, January 16
Session Speaker Time Type
Blockchain: the New Digital Swiss Army Knife? G. Mark Hardy Tuesday, January 16th, 7:15pm - 8:15pm SANS@Night
Wednesday, January 17
Session Speaker Time Type
Kill Chain Paul Henry Wednesday, January 17th, 7:15pm - 8:15pm SANS@Night
Thursday, January 18
Session Speaker Time Type
Monitoring and Incident Response on a Shoestring Budget Joff Thyer Thursday, January 18th, 7:15pm - 8:15pm SANS@Night
This event is over,
but there are more training opportunities.
 
Downloads
Share
Latest Whitepapers

Open-Source Endpoint Detection and Response with CIS Benchmarks, Osquery, Elastic Stack, and TheHive
By Christopher Hurless

Firebase: Google Cloud's Evil Twin
By Brandon Evans

Prescriptive Model for Software Supply Chain Assurance in Private Cloud Environments
By Robert Wood

Last 25 Papers »

Latest Tweets @SANSInstitute

Gain valuable insight into today's top #cybersecurity threat [...]
October 24, 2020 - 8:30 PM

Virtual Forum | Don't miss our upcoming forum chaired by @Ma [...]
October 24, 2020 - 5:01 PM

We created #TechTuesdayWorkshops to give you the opportunity [...]
October 24, 2020 - 4:45 PM

Contact Us

Mon-Fri: 9am-8pm ET (phone/email)
Sat-Sun: 9am-5pm ET (email only)
301-654-SANS(7267)
info@sans.org

"As a security professional, this info is foundational to do a competent job, let alone be successful."
- Michael Foster, Providence Health and Security

"Because of the use of real-world examples it's easier to apply what you learn."
- Danny Hill, Friedkin Companies, Inc.

"Just amazing content and instruction, it's really a 'must do' for any info sec professional."
- Mark Austin, PHH Mortgage