SANS Security West 2021 is right around the corner! Choose from over 30 interactive courses, plus Core & Cyber Defense NetWars.

Webcasts

To attend this webcast, login to your SANS Account or create your Account.

This webcast has been archived. To view the webcast login into your SANS Portal Account or create an account by clicking the "Get Registered" button on the right. Once you register, you can download the presentation slides below.

Network detection & response with open source tools

  • Tuesday, April 13, 2021 at 10:30 AM EDT (2021-04-13 14:30:00 UTC)
  • John Gamble

Sponsor

  • Corelight

You can now attend the webcast using your mobile device!

  

Overview

Network detection and response (NDR) platforms built on open source technologies like Zeek and Suricata offer SOCs greater flexibility and choice compared to closed platforms. Moreover, an open NDR platform can act as a security team force multiplier via the power of their global communities, such as the ability to accelerate responses to zero-day exploits via community-driven detection engineering.

This technical webcast will review popular open source technologies used in NDR platforms, discuss use cases and benefits unique to these tools, and conclude with a brief overview of Corelight's open NDR platform, highlighting Corelight features that have enhanced and extended the amazing capabilities of these open source technologies.

Register for this webcast to hear from John Gamble, Director of Product Marketing at Corelight to learn about the fundamentals of open source NDR technologies and the unique benefits to this approach to monitoring and defending your network.

Speaker Bio

John Gamble

John Gamble is Director of Product Marketing at Corelight and has spent more than a decade in the data protection industry representing cybersecurity, privacy and identity verification solutions, including his most recent role as Director of Product Marketing at Lookout, a mobile endpoint security company.

Need Help? Visit our FAQ page or email webcast-support@sans.org.

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.