A Logo

Feel free to include my content in your page via my
RSS feed

Help Irongeek.com pay for
bandwidth and research equipment:

Search Irongeek.com:

Affiliates:
Irongeek Button
Social-engineer-training Button

Help Irongeek.com pay for bandwidth and research equipment:

paypalpixle


Network Situational Awareness with Flow Data - Jason Smith (BSides Augusta 2016) (Hacking Illustrated Series InfoSec Tutorial Videos)

Network Situational Awareness with Flow Data
Jason Smith

A security operation without flows is no security operation! Prove it? I'll try to. In this talk I'll go over the details on what flows are, why I claim they are so important, and the differences between flow solutions and faux-flow solutions. Best of all, I'll be detailing how you can spend less than 15 minutes to completely set up your own flow solution. I'll be spending significant time answering "and then what?" with real-world practical examples of things you can do with flow data as well as live examples from questions in the audience.

Jason Smith has a background in physics and has built everything from particle accelerators to explosive neutralizing robots used by the military. He has worked in multiple US Department of Defense SOCs and was the lead security monitoring architect for the Commonwealth of Kentucky. Jason co-wrote Applied Network Security Monitoring and maintains the open source project FlowBAT, a graphical flow data analysis tool. Jason works remotely from his home in Bowling Green, KY and has been with FireEye since late 2013.

@Automayt

Back to BSides Augusta 2016 video list

Printable version of this article

15 most recent posts on Irongeek.com:


If you would like to republish one of the articles from this site on your webpage or print journal please contact IronGeek.

Copyright 2016, IronGeek
Louisville / Kentuckiana Information Security Enthusiast