12.11.18
Clarity in the Fog of War: The Value of Red-Blue Exercises
It's hard to win a fight if you've never thrown a punch. For cyber security, practice comes in the form of Red-Blue exercises like the one ExtraHop just hosted in our Seattle headquarters. Watch this 2-minute video to see the Blue team take on faux-attackers with Reveal(x)!
Tyson Supasatit
12.7.18
ZDNet: Industrial espionage fears arise over Chrome extension caught stealing browsing history
Company test runs own traffic analysis service and finds malicious Chrome extension in its own backyard.
Mentha Benek
12.6.18
We Busted A Fake Chrome Extension That Was Trying to Steal Data
A mysterious (and fake) Chrome extension. A clever data exfiltration scheme. They would have gotten away with it, too, if it weren't for those meddling security analysts using ExtraHop Reveal(x)! Follow along as we go from threat detection to response in this real-life threat hunt with network traffic analysis.
Jeff Costlow
11.28.18
A Case Study for Modern Threat Hunting
Cyber security experts are in high demand but many so-called threat hunters begin as network engineers, admins, or analysts who are thrown into the deep end without much security training or experience. If that's you, read this step-by-step case study to learn the basics of confirming and investigating a breach using wire data.
Adam Hebert
11.27.18
The Trouble with Going Native
Public cloud vendors have no choice but to take security seriously - but even the Big Two (AWS and Azure) are still cloud vendors, not security vendors. Here's a breakdown of what cloud-native security really means for the consumer.
Eric Thomas
11.15.18
Decrypt Perfect Forward Secrecy with F5 BIG-IP and ExtraHop
Learn how to use F5 BIG-IP to capture perfect forward secrecy session keys and forward them to ExtraHop in order to passively analyze PFS-encrypted network traffic.
Tyson Supasatit
11.7.18
Reveal(x) Feature Short: Signal Metrics
Watch this 3-minute video to see how the unique Signal Metrics feature in Reveal(x) highlights behaviors that could be impacting your security posture and reducing your hygiene and compliance so you can quickly act on these potential vulnerabilities.
Chase Snyder
11.5.18
How To Detect That Hadoop/YARN DemonBot Exploit That's Going Around
A new 'DemonBot' is exploiting remote code execution in Hadoop YARN to build a huge botnet, but the possibility of data theft via this exploit also looms large. Here's how to detect it quickly.
Matt Cauthorn
10.31.18
Reveal(x) Feature Short: Threat Intelligence
Watch this 3-minute video to see how you can use ExtraHop Reveal(x), network traffic analysis for the enterprise, to quickly investigate suspicious communications identified by third party threat intelligence feeds using STIX files.
Chase Snyder
10.15.18
Reveal(x) Feature Short: Investigation
Watch this 3-minute video to see the full Reveal(x) investigation workflow and learn how SecOps can use network traffic analysis to go from high level threat intelligence to the actual contents of suspicious packets in a matter of minutes.
Chase Snyder
10.10.18
Network Teams Need A Better Workflow
Network monitoring tools aren't keeping up with today's environments. Real-time analytics with ExtraHop delivers the unprecedented visibility and immediate answers you need to act quickly and with confidence.
Ryan Davis
10.4.18
Splunk Agrees: Wire Data Adds Crucial Context to Logs
Splunk and ExtraHop weigh in on the benefits of adding wire data to logs to fill critical visibility gaps. Learn why wire data is the ultimate source of truth for security and IT!
Tyson Supasatit
10.1.18
Signal From Noise: ExtraHop Reveal(x) Signal Metrics
Imagine you're a security analyst just beginning an investigation. How do you know which data will be most relevant? Here's how ExtraHop Reveal(x) signal metrics help you quickly understand all the information you need to respond to a potential threat.
Chase Snyder
9.27.18
What's New in ExtraHop 7.4 and Reveal(x)?
ExtraHop 7.4 gives you powerful detection grouping and filtering capabilities as well as even easier access to the records you need. Let's talk about all the new features of this release!
Jeena Khan
8.24.18
Saving Cyber Monday: A Retailer Averts Disaster with ExtraHop
Cyber Monday sales grew 16.8 percent in 2017. While Black Friday diehards continue to fight over television sets and parking spots, droves of other shoppers prefer the comfort and safety of their…
Rachel Pepple
6.29.18
Compare Device Connections in Live Activity Maps
Learn how to quickly identify recent and past device connections on a live activity map in ExtraHop.
Kirsten Gantenbein
6.19.18
TCP Windowing: What Is It, Scaling and Tips for 2018
What is TCP windowing, and how can you scale effectively and solve congestion problems and other issues? Read the blog to find out, updated for 2018!
Christine Shaw
6.8.18
Detect & Stop This New Android Worm with ExtraHop
ExtraHop users, there's a nasty new Android worm that spreads via remote debugging services, but don't worry—install this remote ADP connections dashboard to quickly find and shut down at-risk devices.
Jeff Costlow
6.6.18
How to Recognize Malicious Network and Port Scanning
Network scanning and port scanning aren't inherently hostile, but they're often used maliciously. Learn to tell the difference between safe and hostile scanning on your network.
Christine Shaw
6.5.18
TCP RTOs: Retransmission Timeouts & Application Performance Degradation
In an effort to rid the world of needless application and network performance slowdowns, we turn to retransmission timeouts (RTOs). What are they and what can you do about them? What Is TCP…
Justin Baker
