Cybersecurity Bootcamp: Threat Hunting and Incident Response

Cybersecurity Bootcamp: Threat Hunting and Incident Response

  • Date: Tuesday, June 28, 2022 - Wednesday, June 29, 2022
  • Time: 8:00 am - 3:00 pm
  • MOREnet Training Rooms
    221 N Stadium Blvd.
    Columbia, MO 65203
  • Add To Calendar

Not all malware is going to be instantly detected by your EDR and AV solutions. Samples that are uncommon, or even custom-designed, will often not be in the signature files of such solutions. This training will center on finding malware in practical and low-cost ways, focusing on the techniques rather than the files themselves. We will be covering network threat hunting with free tools such as RITA, Wireshark, and TCPDump as well as basic system-side incident response and detection with tools like Sysmon, Netstat, Windows Event logging, and more. We will also talk about IR planning and tabletop exercises using the incident response card game, Backdoors & Breaches, by Black Hills Information Security. This class is geared toward tech professionals with basic to intermediate skills in these areas; expect hands-on experience for those who "learn by doing."

This class has filled up but if you would like to be added to the waitlist, please click here