In this installment of Cisco Security HOWTO, Karel Simek from Cisco Advanced Threat Solutions walks us through a detailed but brief threat hunting scenario where we start with looking for known suspicious behaviors in malware submissions to the Threat Grid malware analysis system and then follow through into endpoint visibility via AMP for Endpoints, before finishing up with a multi pronged investigation in Cisco Threat Response that reveals more suspicious activity and the subject of a potential future investigation. To learn more, visit http://cs.co/6055EgGDZ
2019年5月1日星期三
Cisco Security HOWTO: Threat Hunting by Malware Behavior
In this installment of Cisco Security HOWTO, Karel Simek from Cisco Advanced Threat Solutions walks us through a detailed but brief threat hunting scenario where we start with looking for known suspicious behaviors in malware submissions to the Threat Grid malware analysis system and then follow through into endpoint visibility via AMP for Endpoints, before finishing up with a multi pronged investigation in Cisco Threat Response that reveals more suspicious activity and the subject of a potential future investigation. To learn more, visit http://cs.co/6055EgGDZ
订阅:
博文评论 (Atom)
没有评论:
发表评论