A New Era in Endpoint Protection: A SANS Product Review of CrowdStrike Falcon Endpoint Protection

  • Webcast Aired Friday, 09 Jun 2017 10:30AM EDT (09 Jun 2017 14:30 UTC)
  • Speakers: Dave Shackleford, Peter Ingebrigtsen

Conventional antivirus solutions are failing to keep pace with today's threats, so many organizations are turning toward Next Generation Antivirus (NGAV). Yet there's a lot of FUD (fear, uncertainty, doubt) around replacing antivirus with NGAV, particularly in legacy environments.

In this webcast, learn what NGAV actually is, where it fits into the IT infrastructure, and how to easily utilize CrowdStrike's Falcon cloud-based services to keep systems updated and safe from Ransomware, malwareless attacks, and other threats first-generation AV normally wouldn't catch.

During the review, senior SANS Analyst and Instructor Dave Shackleford, will discuss his experiences using Falcon for:

  • Detecting Indicators of Attack (IOA) by using behavioral indicators, machine learning and more
  • Detecting and preventing PowerShell-based attack techniques
  • Detecting and preventing unknown malware attacks while offline
  • Managing threat hunting through deploying Falcon OverWatch

Also learn about the new quarantine features in Falcon, its pre- and post-response reporting features, and cloud-based remediation services.

Click Here to be among the first to access Dave Shackleford's written review findings.