Out in the Wild: How OSINT Supports Proactive Defense

Channel:
United States SANS Cyber Defense
Subscribers:
23,700
Published on ● Video Link: https://www.youtube.com/watch?v=Kwkpt19FBOM


Duration: 43:35
479 views
14

In the SOC, defenders are often true to their name-playing defense to manage detections, assess risk, and protect the network from an ever-evolving barrage of threats. However, attacks don't start with alerts-they start with the infrastructure that attackers set up to deliver the attack. Proactive open-source investigations and external hunting practices can help shift your security posture from reactive to proactive.

Learn how you can use real-world attacks and open-source data to:

Identify high-risk infrastructure associated with threat actor activity
Rapidly investigate infrastructure associations to identify patterns and TTPs, and
Create profiles that you can use to hunt externally for threats relevant to your organization-moving left in attack detection by finding threats before they find you
#OSINT



Other Videos By SANS Cyber Defense


2022-08-25Lifting the Fog: Geolocation and Vehicle Tracking
2022-08-11How are targeted macOS attacks different than Windows?
2022-08-10Hackers Guide to Environmental Catastrophe
2022-07-28Lifting the Fog: Investigating Extremist Groups
2022-07-20Managing Python on Windows
2022-07-14SANS@Night - Blueprint Podcast Live [REPLAY]
2022-06-23Lifting the Fog: OSINT Automation
2022-06-23Detect, Deny, and Disrupt with MITRE D3FEND
2022-06-16Signatures, Signatures, and even more Signatures!
2022-06-14Cyber Security Analyst Training with SANS SEC450: Blue Team Fundamentals
2022-06-13Out in the Wild: How OSINT Supports Proactive Defense
2022-06-09The Encryption and Password Hashing Recipe (with a little salt)
2022-06-06Operations Security (OPSEC) tradecraft tips for online Open Source Intelligence (OSINT) Research
2022-06-05OSINT & AI: The Good, The Bad, and The Fake
2022-06-03Ad Analytics & Marketing SEO Tools as a Resource for OSINT Investigations
2022-06-01Once Upon a Crime: A Novel Approach to OSINT Through Storytelling
2022-05-30Open House: Real Property OSINT and Researching Public Records
2022-05-29Why Take SEC586 Blue Team Operations: Defensive PowerShell?
2022-05-28What Value Does OSINT Bring to the Web 3.0 Space?
2022-05-26Lifting the Fog: OSINT, analytical processes, & analytical bias
2022-05-26How to Investigate Phishing Campaigns


Tags:
osint
osint training
osint tools
osint techniques
jackie abrams
jackie abrams cybersecurity
jackie abrams osint
jackie abrams SOC
how to use osint to defend
open source investigations
osint investigations
osint investigation techniques
proactive defense cybersecurity
proactive defense osint
open source data
open source data for proactive defense