The Power of Open-Source Tools for Network Detection & Incident Response

  • Thursday, 27 Oct 2022 10:30AM EDT (27 Oct 2022 14:30 UTC)
  • Speakers: Matt Bromiley, Craig Peskett, Sr Security Engineering Lead, Corelight

When conducting incident response, EDR and firewall technologies can only show you so much. The breadth of network traffic provides an unrivalled source of evidence and visibility. Open-source security technologies such as Zeek, Suricata, and Elastic can deliver powerful network detection and response capabilities, furthermore the global communities behind these tools can also serve as a force multiplier for security teams, often accelerating response times to zero-day exploits via community-driven intel sharing.Join this webinar to learn:

  • The benefits of popular open-source technologies used in network DFIR
  • Real life use cases for these tools
  • How to leverage these within your organisation