A Logo

Feel free to include my content in your page via my
RSS feed

Help Irongeek.com pay for
bandwidth and research equipment:

Subscribestar or Patreon

Search Irongeek.com:

Irongeek Button
Social-engineer-training Button

Help Irongeek.com pay for bandwidth and research equipment:


The Fox is in the Henhouse: Detecting a Breach Before the Damage is Done - Josh Sokol HouSecCon v6 2015 (Hacking Illustrated Series InfoSec Tutorial Videos)

The Fox is in the Henhouse: Detecting a Breach Before the Damage is Done
Josh Sokol
HouSecCon 2015 v6

Your firewall is a sieve with more holes poked in it than your Grandmother,s pin cushion, your IPS doesn,t know a breach from a hole in the ground, and your signature-based anti-virus can,t keep up with the ever changing tide of malware being hurled at you from every direction.,It,s time to take a deep breath and admit to ourselves that the traditional methods of keeping the bad guys out of our networks have failed us.,Just over two years ago, we began focusing much of our efforts on incident detection and response.,Rather than sinking our precious time and money into tools that would become obsolete before the next BlackHat, we decided to take the time to analyze our networks and got creative with different ways to find the systems that have been compromised that those other technologies couldn,t detect.,In this presentation, we will walk you through the analytics we are running, the tools that we are using, and the techniques that we employ to find and remediate the bad guys from our networks.,Good security doesn,t have to break the bank; it just has to break the mold.

Josh Sokol, CISSP, graduated from the University of Texas at Austin with a BS in Computer Science in 2002.,Since that time, he has worked for several large companies including AMD and BearingPoint, spent some time as a military contractor, and is currently employed as the Information Security Program Owner at National Instruments.,In his current role, Sokol manages all compliance, security architecture, risk management, and vulnerability management activities for NI.,Sokol created the free and open source risk management tool named SimpleRisk, has spoken on dozens of security topics including the much-hyped "HTTPSCan Byte Me" talk at Black Hat 2010, and currently serves on the OWASP Global Board of Directors.

Back to HouSecCon 2015 video list

Printable version of this article

15 most recent posts on Irongeek.com:

If you would like to republish one of the articles from this site on your webpage or print journal please contact IronGeek.

Copyright 2020, IronGeek
Louisville / Kentuckiana Information Security Enthusiast