Hunt like You Mean It presented at BSidesColumbus 2020

by Brandon George,

Summary : Strengthening your security posture doesn't end at monitoring. Your SIEMs and EDR solutions are generally designed to find the proverbial needle in a haystack. What do you do when you're looking for the needle in the stack of needles? Advanced Windows Event Logging and the ELK Stack will allow you to log, query, and gain insights that will lay the foundation for hunting and more vigilant monitoring.