rjvander
at April 27,2018
Threat hunting is a becoming more and more common because both the public and private sectors are realizing that maintaining a tight cybersecurity defensive posture is not enough. Over time a motivated adversary is likely to get into any network, no matter how well it is defended. The video provides a good overview of the discipline but does not go into much detail on anyone section. The discussion of cyber intelligence was poignant in my opinion, particularly for larger companies that generate a lot of network traffic. Without specific indicators provided by outside sources it can be an impossible task to find network intruders.
