Clustering, Sourcing, and Correlating All Things Indicators

  • Thursday, 28 Sep 2017 3:30PM EDT (28 Sep 2017 19:30 UTC)
  • Speakers: Rebekah Brown, Kyle Wilhoit

Most individuals working on blue, intelligence, or reverse engineering teams have worked with indicators of compromise (IOC) or indicators of attack (IOA). But, many analysts still have several questions related to how these indicators are sourced, processed, and pivoted on. 'Where do these elusive indicators come from? How does an analyst go about finding indicators? What can you do with IOCs/IOAs after locating indicators of value? Where can a pivot happen once an IOC is located? In this webinar join Rebekah Brown and DomainTools Sr. Researcher Kyle Wilhoit as they walk through all things indicators!