homepage
Menu
Open menu

Fall Cyber Solutions Fest 2025: Threat Track

Moving from clicking alerts to actively hunting threats takes planning, the right data, and the right tools. In 2025, with AI and automation everywhere, it’s more important than ever to stay ahead of attackers, arming yourself with clear intelligence, full visibility, and smart processes to catch problems before they become crises.

Attackers are now making effective use of AI too, creating fake identities, automated phishing, and constantly changing malware. Still, behind every tool is still a real person (or group) with goals. Organizations need to have a balance of automated analysis with human judgment so you can spot true threats in the noise.

There’s no shortage of threat intelligence sources either: open source, commercial, vendor, and community. Yet many teams struggle to turn intelligence into real defense. In this track, you’ll learn to plug intelligence directly into your security tools, while equipping humans to do better analysis: enriching alerts instantly, mapping threats to the MITRE ATT&CK framework, and sharpening your hunting approach based on what adversaries actually do.

Key Takeaways for 2025:

  • Plan regular, data-driven hunt campaigns instead of one-off investigations
  • Embed threat intelligence into SIEM, SOAR, XDR, and NDR workflows
  • Use AI to speed up indicator triage and add context fast
  • Combine automated analytics with focused human-led hunts
  • Focus on high-quality intelligence that fits your environment

What to Expect:

  • Smart Alert Enrichment: Automatically add useful context to indicators without flooding your team.
  • Next-Gen XDR & MDR: Learn how managed services and orchestration speed up hunts.
  • Live CTI Demos: See real examples of turning raw threat feeds into detection rules.
  • Automated Hunting Playbooks: Create repeatable tasks across XDR, NDR, and cloud logs.
  • Actionable Intelligence Guides: Pick the best data sources and turn them into playbooks your team will use.

Join Ismael Valenzuela, author and SANS senior instructor, as we explore the most successful strategies and opportunities for implementing these tactics in your organization.

Login to Register

Thank You To Our Sponsors!

Screenshot 2025-04-23 at 2.57.15 PM.png

Platinum Sponsors

Censys_Logo_Black_Text.pngSilent Push Logo Full Color.png

Gold Sponsors

CardinalOps-CMYK_transparent.pngCorelight_Transparent.pngHorizontal Logo - Dark - Blue Swoosh.pngNEW.pngSOCRadar Logo.pngthreatconnect-signature.pngNew_Logo_Blue.png

Related Content

Blog
CD - Blog - Making Linux Security Accessible Blog Series - Part 5 -340 x 340.jpg
Cyber Defense
Network Security Basics: Connecting Safely – Part 5 of 5 of the Terminal Techniques for You (TTY): Making Linux Security Accessible Blog Series
Secure your Linux system by managing open ports, configuring firewalls, and using SSH best practices to minimize exposure to cyber threats.
CharlieGoldner_370x370.png
Charles Goldner
read more
Blog
CD - Blog - Making Linux Security Accessible Blog Series - Part 4_340 x 340.jpg
Cyber Defense
Process Management: Knowing What is Running on Your System – Part 4 of 5 of the Terminal Techniques for You (TTY): Making Linux Security Accessible Blog Series
Welcome to the fourth installment in our TTY series! So far, we've explored how to navigate the Linux file system, keep your software updated, and control file permissions. In this post, we're going to discover another critical aspect of Linux security: understanding and managing the processes...
CharlieGoldner_370x370.png
Charles Goldner
read more
Blog
powershell_option_340x340.jpg
Offensive Operations, Pen Testing, and Red Teaming, Penetration Testing and Red Teaming, Cybersecurity and IT Essentials, Cyber Defense
Month of PowerShell: Fileless Malware with Get-Clipboard
Let's take a look at a sneaky attack to use PowerShell maliciously while evading detection (and some ways to detect it).
Josh Wright - Headshot - 370x370 2025.jpg
Joshua Wright
read more