Too often, when looking for malicious network traffic, you either search for known bad network traffic or investigate anomalous traffic that doesn’t look normal. That reactive approach is time consuming, and potentially over-reliant on searching for larger concerns. Fortunately, new solutions use advanced network analytics to proactively identify, enrich and alert on malicious traffic. Why is this important? Detecting known bad network traffic is great when it works, but it’s a lot like signature-based AV (which is rigid and unable to detect unknown threats). Often it is only really effective for widespread, generalized attacks – not so great for unique targeted attacks. Further, there’s an indefinite amount of time before the malicious traffic signature, domain name or IP makes it into the pattern updates and threat intel feeds from your vendors. Detecting anomalous traffic can address the aforementioned weaknesses, but in practice it depends heavily on how – and how well – you define anomalous traffic, and how quickly (accurately) you can spot it. Security practitioners are getting better by the day at looking for anomalies. Here’s just a few we’ll focus on in our webinar: Unrecognized port protocol numbers Malformed/non-compliant traffic compared to protocol expected on known port Protocols you don’t want or at least don’t expect to see in the given context Disproportionate inbound/outbound bandwidth usage for a given endpoint Suspicious Destination/Source IP combinations In this webinar, Randy Franklin Smith (of Ultimate Windows Security) and Rick Fernandez (of LogRhythm) will explore how to analyze your network so that you can learn and understand its traffic patterns and get a handle for what’s normal. You’ll then be able to take this information and look for anomalous traffic, build known-bad detections and make your network detection and response (NDR) technologies and efforts smarter.

Hora

19:00 - 20:00 hs GMT+1

Organizador

LogRhythm | The Security Intelligence Company
Compartir
Enviar a un amigo
Mi email *
Email destinatario *
Comentario *
Repite estos números *
Control de seguridad
Agosto / 2020 34 webinars
Lunes
Martes
Miércoles
Jueves
Viernes
Sábado
Domingo
Lun 27 de Agosto de 2020
Mar 28 de Agosto de 2020
Mié 29 de Agosto de 2020
Jue 30 de Agosto de 2020
Vie 31 de Agosto de 2020
Sáb 01 de Agosto de 2020
Dom 02 de Agosto de 2020
Lun 03 de Agosto de 2020
Mar 04 de Agosto de 2020
Mié 05 de Agosto de 2020
Jue 06 de Agosto de 2020
  • Digital Health for All Session 1

    18:00 - 19:00 hs GMT+1

    Fecha
    Jue 6-Ago-2020, 18:00 - 19:00 hs GMT+1
    Descripción
    Next-Generation Software Development for Digital Health Webinar Series   Through this four-course series, we will explore how to architect complex software solutions, balance agile with regulatory constraints, and showcase how Low-Code development catalyzes DevOps. Attendees will learn how to reconcile the speed (...)
    Cerrar
Vie 07 de Agosto de 2020
Sáb 08 de Agosto de 2020
Dom 09 de Agosto de 2020
Lun 10 de Agosto de 2020
Mar 11 de Agosto de 2020
Mié 12 de Agosto de 2020
Jue 13 de Agosto de 2020
Vie 14 de Agosto de 2020
Sáb 15 de Agosto de 2020
Dom 16 de Agosto de 2020
Lun 17 de Agosto de 2020
Mar 18 de Agosto de 2020
Mié 19 de Agosto de 2020
Jue 20 de Agosto de 2020
Vie 21 de Agosto de 2020
Sáb 22 de Agosto de 2020
Dom 23 de Agosto de 2020
Lun 24 de Agosto de 2020
Mar 25 de Agosto de 2020
Mié 26 de Agosto de 2020
Jue 27 de Agosto de 2020
Vie 28 de Agosto de 2020
Sáb 29 de Agosto de 2020
Dom 30 de Agosto de 2020
Lun 31 de Agosto de 2020
Mar 01 de Agosto de 2020
Mié 02 de Agosto de 2020
Jue 03 de Agosto de 2020
Vie 04 de Agosto de 2020
Sáb 05 de Agosto de 2020
Dom 06 de Agosto de 2020
  • Digital Health for All Session 1

    18:00 - 19:00 hs GMT+1

    Fecha
    Dom 6-Ago-2020, 18:00 - 19:00 hs GMT+1
    Descripción
    Next-Generation Software Development for Digital Health Webinar Series   Through this four-course series, we will explore how to architect complex software solutions, balance agile with regulatory constraints, and showcase how Low-Code development catalyzes DevOps. Attendees will learn how to reconcile the speed (...)
    Cerrar

Publicidad

Lo más leído »

Publicidad

Más Secciones »

Hola Invitado