Hi [[ session.user.profile.firstName ]]


  • Date
  • Rating
  • Views
  • Turbocharge your Cyber Investigations, Part 1 Turbocharge your Cyber Investigations, Part 1 Jeff Lenton, Solutions Architect, RiskIQ Recorded: Oct 13 2016 32 mins
    While their cyber tactics may be continuously changing, bad actors can’t avoid interacting with core components of the internet. These interactions leave a trail that when connected through rigorous threat infrastructure analysis, can reveal the full scale of an attack and provide the information needed to determine the best response. The key to this analysis is access to a variety of global datasets and the ability to correlate and pivot between them in your investigation.

    In this two part series we will look at a range of global datasets and how each can be used to shed additional light on your adversary’s infrastructure. This session will focus on Passive DNS, Whois and Malware data. We will also demonstrate how security analysts can use the free community version of RiskIQ’s PassiveTotal to gain access to and pivot across these global datasets.

Embed in website or blog