In this webinar, SANS instructor Christopher Crowley and ExtraHop Principal Engineer John Smith provide a technical primer on how to get the most value out of the MITRE ATT&CK Framework, and a deep dive into a few key tactics, techniques, and procedures where Network Detection & Response (NDR) is the best approach for quickly catching threats inside the network, including:
- Brute Force detection across encrypted protocols
- Lateral Movement
- Data Exfiltration
- Command & Control
Chris and John also discuss why decrypting network traffic for analysis is a vital practice for detecting some of the most common attacks, including SQL injection and data exfiltration from critical databases.
To view the webinar, go here.