Dienstag, 30. April 2019

Cisco Security HOWTO: Threat Hunting by Malware Behavior


In this installment of Cisco Security HOWTO, Karel Simek from Cisco Advanced Threat Solutions walks us through a detailed but brief threat hunting scenario where we start with looking for known suspicious behaviors in malware submissions to the Threat Grid malware analysis system and then follow through into endpoint visibility via AMP for Endpoints, before finishing up with a multi pronged investigation in Cisco Threat Response that reveals more suspicious activity and the subject of a potential future investigation. To learn more, visit http://cs.co/6055EgGDZ http://bit.ly/2GRD3KK Cisco April 30, 2019 at 10:03AM

Keine Kommentare: