MozDef: The Mozilla Defense Platform presented at BSidesPDX 2014

by Jeff Bryner,

Summary : Attackers have all the fun. With slick, integrated, real-time, open suites like metasploit, armitage, SET, and lair they quickly seek out targets, share exploits, gain footholds and usually win. The time has come for defense to get the same capabilities in an open-source platform dedicated to defense and based on modern technology.
To this end the operations security group at Mozilla has developed MozDef: The Mozilla Defense Platform to take on traditional SIEM functionality of event management, alerting and correlation and expand the real-time capabilities of the defender into automated defense and shared incident response.
This presentation will cover it's main features and functionality. Using as much live demo as possible, you will get a tour of MozDef and an open invitation to help contribute. Lets bolster defense for a change!
Jeff Bryner ( @0x7eff ) is a 20+year infosec veteran/addict. Speaker at 3 DEF CONs, 3 Bsides, and 1 RSA (but he didn't mean it),
he stands accused of re-writing everything in python, integrating security tools into 3D worlds with kinectasploit and taunting the
Demo Gods in every presentation.