mastering the hunt: modern threat hunting

Training Details

1-DAY TRAINING, 4 SEPTEMBER @ MEERVAART AMSTERDAM
TICKET PRICE: €900 EX BTW

Threat hunting has become an art that is created by the inspiration of the analyst. When you want to carry out a hunting mission, there are multiple ways to achieve the same result, all of which are valid forms of hunting. The ecosystem of tools that focus on threat hunting increasingly have more capabilities and offer new alternatives to proactively identify threats. For all these reasons, during the workshop we will focus mainly on the following:

• Threat hunting based on artifacts generated by sandboxes that allow tracking campaigns
• How actors, out of laziness, do not change certain characteristics that they use in their campaigns and that allows us to monitor them
• Pivoting techniques that leads us to identify new samples related to the actors and proactively monitor the activity
• Threat Hunting based on Netloc, thus managing to identify new samples without the need to identify patterns in the files
• Use of LLMs to do Threat Hunting thanks to the results generated by the models
• How we can convert our research in detections

This training offers hands-on learning with real-world examples. Whether you're a seasoned pro or just starting out in threat hunting, you'll gain practical skills to identify and track a wide range of current cyber threats.

Prerequisites

Basic python scripting knowledge will be necessary for the automation module, and basic YARA rules knowledge will help speed up some modules and go straight to practical exercises.

Previous knowledge of malware analysis or detection is helpful, but not required.

This course will enhance any existing skills and put them to the test with hands-on threat hunting exercises.