Endpoint Detection and Response technology have changed how security teams investigate incidents by increasing the available data. In this session we look at how this trend has continued by demonstrating collection of network and application logs while performing event correlation using a mixture of freely available tools.


RSA® Conference, the world’s leading information security conferences and expositions, today concluded its 31st annual event at the Moscone Center in San Francisco. The year’s event attracted over 26,000 attendees, including 600+ speakers, 400+ exhibitors, and over 400 members of the media. Throughout the week, attendees networked on the expo floor and participated in keynote presentations, track sessions, tutorials, seminars, and special events.

Several of the most pressing topics discussed during this year’s Conference included issues surrounding privacy and surveillance, the positive and negative impacts of machine learning and artificial intelligence, the nuances of risk and policy, and cybersecurity-focused innovations across crypto and blockchain.

Extend EDR Visibility by Logging Everything: Demo with Free Integrations

Conference: RSA Conference 2022

Abstract

Post a comment

Related work

Deep Impact: Recognizing Unknown Malicious Activities from Zero Knowledge

Weaponizing Plain Text: ANSI Escape Sequences as a Forensic Nightmare

It's Not Your Developers' Fault

Preventing an OWASP Top 10 in the world of AI

Veni, No Vidi, No Vici: Attacks on ETW Blind EDR Sensors

Every Security Team is a Software Team Now