back caretBlog

SANS Webinar - Network Detection & Response (NDR) Meets MITRE ATT&CK

Learn how to improve your detection strategy with MITRE ATT&CK, and how NDR fits in

In this webinar, SANS instructor Christopher Crowley and ExtraHop Principal Engineer John Smith provide a technical primer on how to get the most value out of the MITRE ATT&CK Framework, and a deep dive into a few key tactics, techniques, and procedures where Network Detection & Response (NDR) is the best approach for quickly catching threats inside the network, including:

  • Brute Force detection across encrypted protocols
  • Lateral Movement
  • Data Exfiltration
  • Command & Control

Chris and John also discuss why decrypting network traffic for analysis is a vital practice for detecting some of the most common attacks, including SQL injection and data exfiltration from critical databases.

To view the webinar, go here.

Related Blogs

Sign Up to Stay Informed