YoVDO

The SOC Counter ATT&CK

Offered By: NorthSec via YouTube

Tags

NorthSec Courses Cybersecurity Courses Threat Detection Courses Threat Modeling Courses Threat Hunting Courses

Course Description

Overview

Explore the world of Security Operations Center (SOC) and its relationship with the MITRE ATT&CK framework in this 30-minute conference talk by Mathieu Saulnier at NorthSec 2019. Delve into the history of attacks, the ATT&CK framework, and its Navigator tool. Learn about scoring methodologies, threat detection reporting, and threat modeling techniques. Discover how to leverage the ATT&CK matrix for key performance indicators and explore tools like Sigma, ModularOS Query, and Red Canary for threat hunting and red team automation. Gain valuable insights from a seasoned security professional with extensive experience in SOC implementation, detection, and mentorship across major Canadian institutions.

Syllabus

Intro
History of Attack
Attack Framework
Attack Navigator
Scoring
Weight
Points
Threat Detection Report
Threat Modeling
Matrix and KPI
Sigma
Modular
OS Query
Tread Hunting
Red Canary
Atomic Friday
RedTeam Automation
Commercial
Key takeaways
Thank you


Taught by

NorthSec

Related Courses

I Am Become Loadbalancer, Owner of Your Network
NorthSec via YouTube The Risks of RDP and How to Mitigate Them
NorthSec via YouTube Authentication Challenges in SaaS Integration and Cloud Transformation
NorthSec via YouTube Building CANtact Pro - An Open Source CAN Bus Tool
NorthSec via YouTube Unmasking the Chameleons of the Criminal Underground
NorthSec via YouTube