This workshop will cover the collection of threat intelligence using Security Onion, a Linux distribution used for network security monitoring and intrusion detection.
You will explore how analysis tools that comprise Security Onion like BRO, Snort, Kibana, Sguil, and more allow an administrator to efficiently work with network data.
Whether you are very familiar with Network Security Monitoring or you are new to networking, this session will give you taste of the tools and data types used to detect unauthorized access or misuse of a network resources.
When your means of prevention fails to keep attackers out, you will need to rely on network evidence to analyze and respond to attacks.
There is not an additional fee to register for the workshop. To register for the workshop, you may add it during the FITSC registration.