filmov
tv
#Hacktivity2021 // Detection Engineering: Building Custom Detection Controls for Cloud Environments
Показать описание
Rashid Feroze - Detection Engineering: Building Custom Detection Controls at Scale for Cloud Environments Using Cloud Native and Open Source Tools
This is an On-demand presentation at #Hacktivity2021 IT Security Festival.
Detection Engineering: Building Custom Detection Controls at Scale for Cloud Environments Using Cloud Native and Open Source Tools
In this talk, I will demonstrate how you can build your own custom detection controls for your organisation at scale using cloud native services and open source NSM tools such as for pennies compared to commercial solutions. I will talk about how we can leverage serverless to build our own automation to detect malicious events across multiple accounts and I will also talk about how we can leverage lesser known cloud native services such as traffic mirroring and open source NSM’s to build a robust threat detection system which can detect known and unknown threats within your cloud environment. I will address how we have built custom detection controls for detecting critical misconfigurations and complex threats such as C2 beaconing, network intrusion and mass data extraction.
#HACKTIVITY is the biggest event of its kind in Central & Eastern Europe. About 1000 visitors are coming from all around the globe every year to learn more about the latest trends of cybersecurity, get inspired by people with similar interest and develop themselves via comprehensive workshops and training sessions.
This is an On-demand presentation at #Hacktivity2021 IT Security Festival.
Detection Engineering: Building Custom Detection Controls at Scale for Cloud Environments Using Cloud Native and Open Source Tools
In this talk, I will demonstrate how you can build your own custom detection controls for your organisation at scale using cloud native services and open source NSM tools such as for pennies compared to commercial solutions. I will talk about how we can leverage serverless to build our own automation to detect malicious events across multiple accounts and I will also talk about how we can leverage lesser known cloud native services such as traffic mirroring and open source NSM’s to build a robust threat detection system which can detect known and unknown threats within your cloud environment. I will address how we have built custom detection controls for detecting critical misconfigurations and complex threats such as C2 beaconing, network intrusion and mass data extraction.
#HACKTIVITY is the biggest event of its kind in Central & Eastern Europe. About 1000 visitors are coming from all around the globe every year to learn more about the latest trends of cybersecurity, get inspired by people with similar interest and develop themselves via comprehensive workshops and training sessions.
0:29:19
0:28:51
0:06:03
0:38:35
0:47:06
0:37:44
0:19:16
0:39:47
0:33:59
0:22:07
1:04:09
0:40:01
0:52:42
0:31:38
0:41:43
0:30:22
0:54:20
0:47:29
0:02:42
![[BSL2022] Perfect data](https://i.ytimg.com/vi/HF1Cjt1RPV4/hqdefault.jpg)
0:42:54
0:13:51
![[Disobey 2023] Finding](https://i.ytimg.com/vi/XGSWNXa4XmU/hqdefault.jpg)
0:42:04
0:00:57
0:23:07