CONTACT US
Webinar_tag

How to find lateral movement with Zeek and MITRE ATT&CK

Presented by

 

Register for this webinar

Register today to join us for this live webinar on Tuesday, May 21st at 10 am GMT / 11 am CET.

Corelight drives broad coverage across the MITRE ATT&CK TTPs using an approach focused on visibility and explainable, evidence-based analytics. The foundation of this approach is Zeek® network telemetry, data that captures activity across a broad set of network protocols and fuels advanced

In this webinar you will learn how to: 
  • Find pass the hash attacks where attackers authenticate without the user's cleartext password
  • Spot attempts to gain unauthorized interactive access to workstations and servers via RDP
  • Monitor FTP for potential transferers of malicious toolkits into your environment
Matt Ellison - image

SPEAKER:

Matt Ellison

Director of Sales Engineering for EMEA and APAC, Corelight

Matt has specialised in cyber security for over 15 years across endpoint, network and user technologies and has led teams in product management, product marketing and technical sales. With previous roles at Symantec, LogRhythm and BAE Systems, Matt’s extensive experience has allowed him to work with numerous organisations across EMEA and APAC helping them understand how best to address their security challenges.

corelight-logo-white

Corelight provides security teams with network evidence so they can protect the world's most critical organizations and companies.