Dive into a comprehensive conference talk that explores the process of building a threat detection platform from the ground up. Learn how to develop a scalable and efficient detection pipeline, covering key aspects such as automated data ingestion, detections-as-code implementation, and data filtering techniques. Gain insights into creating a serverless platform designed to effectively identify and respond to security threats. Presented by David Levitsky and Brian Maloney at Security BSides San Francisco, this 50-minute session offers valuable knowledge for cybersecurity professionals looking to enhance their threat detection capabilities.
To Normalized Logs, and Beyond - Building a Threat Detection Platform from Scratch
Security BSides San Francisco via YouTube
Overview
Syllabus
BSidesSF 2023 - To Normalized Logs, and Beyond - Building a Threat Detection... (Levitsky, Maloney)
Taught by
Security BSides San Francisco
Related Courses
-
Detection as Code - The Engineering-Focused Future of Detection and Response
-
Hunting Supply Chain Threats Using Anomaly Detection
-
The History of Ransomware - From Floppies to Droppers, and Beyond
-
Solving Threat Detection
-
Dragos ICS Threat Detection and Response Platform Demo
-
Lessons Learned from Building and Running MHN, the World's Largest Crowd-sourced Honeynet
