SANS DFIR Summit 2022Speaker: Gerard Johansen
Properly analyzing an incident is paramount in gaining situational awareness to properly contain a threat. Further, a comprehensive analysis may also tell you how an attacker was able to gain access to the environment. The challenge is matching the right analysis methods to the goals an analyst needs to achieve. What is needed is an understanding of the various incident analysis levels and what they can tell us. During the course of the presentation, the attendees will be given the five levels of analysis and the corresponding tools, techniques and processes to achieve the goals of each of these levels. This will allow them to align their own analysis processes to match what they are trying to achieve. This talk will cover five analysis levels: Detection Analysis, Preliminary Analysis, Root Cause Analysis, Intrusion Analysis, Attribution Analysis.
View upcoming Summits:
Музыка
Фильмы
ТВ Шоу
Категории видео
