Sysmon DNS Logging, Gravwell – Paul’s Security Weekly #608

June 17, 2019

We welcome back Corey Thuen, Founder and CEO of Gravwell, to talk about security analytics using the new Sysmon DNS logging that dropped this week!

To get involved with Gravwell, visit: https://securityweekly.com/gravwell
Full Show NotesFollow us on Twitter: https://www.twitter.com/securityweekly

Hosts

[caption id="attachment_210" align="alignleft" width="120"] Paul Asadorian Paul Asadorian - CTO, Security Weekly.[/caption][caption id="attachment_210" align="alignleft" width="120"] Joff Thyer Joff Thyer - Security Analyst, Black Hills Information Security.[/caption][caption id="attachment_210" align="alignleft" width="120"] Lee Neely Lee Neely - Senior Cyber Analyst , Lawrence Livermore National Laboratory.[/caption][caption id="attachment_210" align="alignleft" width="120"] Jeff Man Jeff Man - Sr. InfoSec Consultant, Online Business Systems.[/caption][caption id="attachment_210" align="alignleft" width="120"] Larry Pesce Larry Pesce - Senior Managing Consultant and Director of Research, InGuardians.[/caption]

Announcements

  • Register for our upcoming webcasts with SaltStack, DomainTools, and LogRhythm by going to securityweekly.com/webcasts. If you have missed any of our previously recorded webcasts, you can find our on-demand library at securityweekly.com/ondemand
  • Some of you told us that you are overwhelmed by the amount of content we distribute! In an attempt to make it a little easier for you to find what you're interested in, we've created our new listener interest list! Sign up for list and select your interests by visiting: securityweekly.com/subscribe and clicking the button to join the list! You can also now submit your suggestions for guests in our recently released guest suggestion form! Go to securityweekly.com/guests and enter your suggestions!
  • Security Weekly is returning to Vegas this August for BlackHat and DefCon! If you would like to request a briefing or sponsor an interview on-site at BlackHat, please go to securityweekly.com/booking and submit your request!
  • Security Weekly will be at Hacker Halted in Atlanta, GA this October 10th-11th! EC-Council is offering our listeners a 15% discount to sit for any of their Bootcamp Courses or Workshops! Visit Securityweekly.com/hackerhalted to register now!

[audio src="http://traffic.libsyn.com/sw-all/Sysmon_DNS_Logging_Gravwell_-_Pauls_Security_Weekly_608_converted.mp3" ]

prestitial ad