Too often, when looking for malicious network traffic, you either search for known bad network traffic or investigate anomalous traffic that doesn’t look normal. That reactive approach is time consuming, and potentially over-reliant on searching for larger concerns. Fortunately, new solutions use advanced network analytics to proactively identify, enrich and alert on malicious traffic. Why is this important? Detecting known bad network traffic is great when it works, but it’s a lot like signature-based AV (which is rigid and unable to detect unknown threats). Often it is only really effective for widespread, generalized attacks – not so great for unique targeted attacks. Further, there’s an indefinite amount of time before the malicious traffic signature, domain name or IP makes it into the pattern updates and threat intel feeds from your vendors. Detecting anomalous traffic can address the aforementioned weaknesses, but in practice it depends heavily on how – and how well – you define anomalous traffic, and how quickly (accurately) you can spot it. Security practitioners are getting better by the day at looking for anomalies. Here’s just a few we’ll focus on in our webinar: Unrecognized port protocol numbers Malformed/non-compliant traffic compared to protocol expected on known port Protocols you don’t want or at least don’t expect to see in the given context Disproportionate inbound/outbound bandwidth usage for a given endpoint Suspicious Destination/Source IP combinations In this webinar, Randy Franklin Smith (of Ultimate Windows Security) and Rick Fernandez (of LogRhythm) will explore how to analyze your network so that you can learn and understand its traffic patterns and get a handle for what’s normal. You’ll then be able to take this information and look for anomalous traffic, build known-bad detections and make your network detection and response (NDR) technologies and efforts smarter.

Hora

19:00 - 20:00 hs GMT+1

Organizador

LogRhythm | The Security Intelligence Company
Compartir
Enviar a un amigo
Mi email *
Email destinatario *
Comentario *
Repite estos números *
Control de seguridad
Julio / 2020 132 webinars
Lunes
Martes
Miércoles
Jueves
Viernes
Sábado
Domingo
Lun 29 de Julio de 2020
Mar 30 de Julio de 2020
Mié 01 de Julio de 2020
Jue 02 de Julio de 2020
Vie 03 de Julio de 2020
Sáb 04 de Julio de 2020
Dom 05 de Julio de 2020
Lun 06 de Julio de 2020
Mar 07 de Julio de 2020
Mié 08 de Julio de 2020
Jue 09 de Julio de 2020
Vie 10 de Julio de 2020
Sáb 11 de Julio de 2020
Dom 12 de Julio de 2020
Lun 13 de Julio de 2020
Mar 14 de Julio de 2020
Mié 15 de Julio de 2020
Jue 16 de Julio de 2020
Vie 17 de Julio de 2020
Sáb 18 de Julio de 2020
Dom 19 de Julio de 2020
Lun 20 de Julio de 2020
Mar 21 de Julio de 2020
Mié 22 de Julio de 2020
Jue 23 de Julio de 2020
Vie 24 de Julio de 2020
Sáb 25 de Julio de 2020
Dom 26 de Julio de 2020
Lun 27 de Julio de 2020
Mar 28 de Julio de 2020
Mié 29 de Julio de 2020
Jue 30 de Julio de 2020
Vie 31 de Julio de 2020
Sáb 01 de Julio de 2020
Dom 02 de Julio de 2020

Publicidad

Lo más leído »

Publicidad

Más Secciones »

Hola Invitado