Resources

SANS 2019 Threat Hunting Survey authors Mathias Fuchs and Joshua Lemon will discuss key themes that emerged during their analysis of survey results, joined by a panel of representatives from DomainTools, ExtraHop and ThreatConnect.

Jeff Costlow, Deputy CISO at ExtraHop, shares insights about how data-first approaches and cross-collaboration improve security posture and help reduce tool sprawl.

Join ExtraHop and (ISC)2 for a discussion on cyber insurance, demystifying the current insurance landscape and what are the right questions to answer.

In this SANS webcast, expert Dave Shackleford and Tom Stitt from ExtraHop discuss how Reveal(x) can help an organization evaluate threat activity in multiple scenarios, and how key new features make doing so easier than ever.

ExtraHop and Security Weekly discuss the challenges and opportunities facing security and IT teams when it comes to scaling security talent.

As deployment models evolve so does the need for our responses. With technology such as Cloud, containers, and rapid update deployment rolling out, what's going on with security?

We'll show you the latest ransomware in action, with videos and screenshots from actual cases, and discuss strategies for monitoring and detecting ransomware, including mistakes to avoid and tactics for thwarting the stealthiest new threats.

Learn how you can go beyond the traditional perimeter security provided by a firewall, IPS, etc. to actively search for threats that have infiltrated your network.

This webcast takes a deeper dive into the results of the SANS 2019 Incident Response (IR) Survey.

This webcast digs more deeply into the results of the SANS 2019 SOC Survey, in a panel moderated by SANS Director of Emerging Technologies John Pescatore.

In this presentation you'll learn how to take your ATT&CK understanding and coverage to the next level with network traffic analysis.

Step through a rapid, end-to-end investigation and response process, from early breach detection to forensic analysis in just minutes, relying on Network Traffic Analysis for authoritative and detailed data.

Learn the process for building a threat hunting program, and for optimizing the efforts of designated threat hunters in the organization.

This webcast digs more deeply into the results of the SANS 2019 Cloud Security Survey, conducted in cooperation with the Cloud Security Alliance.

This Black Hat-hosted presentation will explore typical administration methods and how attackers exploit them, as well as provide the best methods of secure administration to protect privileged credentials.

ExtraHop Deputy CISO Jeff Costlow discusses how security operations teams can escape the cycle of reactivity characterized by constantly responding to a flood of alerts, and move toward a more proactive stance by using the right data sources and workflows, driven by network traffic analysis, to focus on developing proactive capabilities like continuous encryption auditing, policy auditing, and more advanced use cases like threat hunting.

Learn about research findings to help you gain support for a proactive plan and avoid retrofitting security. Security pros will learn what to consider and prioritize and how to engage productively with IT. IT and application teams will understand the visibility, performance, and security implications of different approaches to encryption and decryption.

This webinar will discuss the role that network traffic analysis can play in speeding up incident response, quickly investigate incidents and get definitive answers.

Learn how Network Traffic Analysis can provide the visibility and data access needed to take investigations from many hours to just a few clicks.

Learn the ways that machine learning can help in security operations, how it can speed threat analysis, and how to evaluate and choose technologies that will work in your organization.

The experts from ExtraHop and Ixia will reveal new insights into best practices for alignment and delivering the right data—even if it's the same data—to each team.

Hear war stories and recommendations in SOC operations –including how to analyze and respond to new attacks that have evaded traditional defenses.

EMA Managing research Director David Monahan joins ExtraHop CIO John Matthews to explain how you can automatically prioritize your most critical assets, provide context to alerts, and put full transaction details at your fingertips during investigations.

This webinar explains why ExtraHop and Splunk make such a great fit, and how you can use the ExtraHop App for Splunk to stream wire data such as details for DNS, database, storage, and more.

In this webinar, you will learn about what cloud providers can help you with, what gaps you need to fill, and the role that network traffic analysis can play in securing your cloud environments.

This SANS Institute review evaluates the ExtraHop Reveal(x) product and its ability to support detection, investigation and response for these late-stage attack activities.

Join this interactive Q&A to discover the latest trends in cyber crime, your organization's vulnerabilities, and how to go about preventing, detecting and responding to a breach.

In this webcast, we'll cover how your peers are using NTA technology to focus on what matters, the impact of forward secrecy and TLS 1.3 encryption on network analysis, how NTA can simplify CIS Critical Security Controls 1 and 2 and more!

In this webcast, learn the tools and technologies SOCs are deploying to integrate and manage all their security, operational and response data for better protection, detection and response.

In this webcast, learn how respondents to our 2018 SOC survey are staffing their SOCs, the value of cloud-based services to augment staff and technology, and respondents' level of satisfaction with the architectures they've deployed.

The ExtraHop Reveal(x) Summer 2018 release introduces compelling features such as new ways of visualizing threats, integrations with Splunk, ServiceNow, Anomali, and Palo Alto, and more.

Learn three real-world threat detection, investigation, and automation scenarios with Reveal(x) & Phantom.

In this webinar, you will learn how your peers are using NTA technology based on a new market research from 451 Research, as well as ExtraHop's approach to NTA that goes beyond just detecting threats.

In this webinar, we'll be looking at real-life examples of how IT teams can leverage enterprise-scale IT analytics backed by AI to improve application performance, reveal suspicious activity and provide business intelligence.

Join top security experts for this interactive Q&A discussion on trends in ransomware attacks, backups, patches and other ways to protect your data, how to bolster your organization's security culture and other threats on the horizon.

In this webinar, we'll discuss how to build an action-oriented security architecture, key use cases, and critical success factors.

In this webinar, you will learn about TLS 1.3's implications for enterprise performance and security monitoring, and how ExtraHop offers a novel method of decrypting traffic using ephemeral session keys without an inline deployment.

ExtraHop and Cerner provide the ability to see, in real time and down to the transactional level, exactly what's happening across your healthcare IT and clinical systems. This visibility isn't just a nice to have, it is a must-have to keep your IT healthy.

Learn more about how to overcome the common challenges in your data center migration project, using data pulled from the network to discover assets, map dependencies, measure before-and-after baselines, and validate your project's success.

In this webinar, we'll discuss the parts of the current security paradigm that cause the most time waste, and introduce a new automated 3-in-1 workflow, enabled by ExtraHop Reveal(x), that can reduce wasted time and accelerate investigations for enterprise security teams.

Many network operation teams struggle to address data friction issues by failing to leverage their network. Using a network as a real-time data source allows you to confidently maximize the value of IT data. Learn about an analytical approach to healthcare and how to leverage a network as a data source.

In this webinar, IDC Research Director Brad Casemore and ExtraHop's Director of Solutions Architecture, Eric Thomas, discuss how organizations can tap into network communications and maintain visibility for security and performance.

This webinar will discuss the pieces of a cybersecurity ecosystem model, and how this type of model requires policies, processes, and technologies that allow your healthcare organization to take a more proactive approach to risk management and security.

EMA recently bestowed its Innovator's Award on ExtraHop's Addy machine learning offering for its ability to remove much of the burden from human operators. Join this webinar to learn how machine learning can help under-resourced network teams do more with less.

IoT is going to be great, but the security challenges can't be ignored. Watch this webinar to learn how security needs will change as IoT scales, and why stream analytics and wire data are the only way to maintain the visibility you need.

ExtraHop, APCON, and Portland Community College (PCC) discuss the challenges PCC faced when trying to expand visibility and aggregate network traffic from multiple remote sites.

This webinar will discuss a new discipline for understanding the role each data source fulfills in the cybersecurity toolset, and how to take a strategic approach to extracting the most relevant, valuable insights from each data source for a more complete security posture that requires less manual effort to achieve.

Join this webinar to discover how you can track five key metrics that characterize the performance of your Citrix environment. We call these metrics "The Five Ls": Launches, Logon Time, Load Times, Latency, ChanneLs.

With the announcement of version 7.0, ExtraHop provides real-time and empirical data all teams can benefit from through complete visibility, faster incident resolution, and stronger security. In this webinar, we will cover the new ways we are helping our customers reveal the shape and context of their digital enterprise.

This webinar will explain the SOAPA approach and how wire data fits, and will include use cases for integration and orchestration of wire data with other security tools such as SIEM platforms.

Learn how ExtraHop helps you identify the root cause of your IT problems, avoiding unnecessary friction among your IT teams and ransomware by providing full, real-time visibility into which devices are accessing network share and what type of behavior they are exhibiting, backed by machine learning for immediate anomaly detection.

In this webinar, we'll share a story from an ExtraHop customer who underwent a large datacenter migration after it acquired a new business.

Learn how ExtraHop helps you identify ransomware by providing full, real-time visibility into which devices are accessing network share and what type of behavior they are exhibiting, backed by machine learning for immediate anomaly detection.

Healthcare organizations must monitor DICOM performance and without ExtraHop it is nearly impossible. Watch this webinar to see first-hand how ExtraHop can provide visibility and insight into your healthcare infrastructure.

Drex DeFord shares his own experience on applying Lean principles to healthcare IT, as well as the experiences of many CIOs and IT leaders from around the United States. Drex was formerly the CIO at Scripps Health, Seattle Children's, Steward Healthcare, and the U.S. Air Force.

This webinar covers four methods for detecting ransomware attacks in progress on your network, along with standard behavioral and technical methods for preventing ransomware in the first place, and recovering from attacks if they do get through.