“The success of security teams when combating cyber threats relies on visibility into the environment they must defend. Security teams that do not have visibility into their endpoints may not see a threat actor moving in the environment, stealing credentials, deploying backdoors, or exfiltrating sensitive data.”
The goal of this white paper — written by the professionals at Crypsis — is to illustrate how security teams can close the visibility gap into Windows endpoints through the use of the free Sysinternals tool Sysmon with Splunk®. Sysmon paired with Splunk can provide near real time visibility and alerting on the common actions targeted threat actors perform during an attack. Additionally, Sysmon paired with Splunk provides an excellent platform to proactively hunt for evidence of compromise in an environment.
Jason Rebholz, Senior Director at The Crypsis Group, is one of the panelists at our biannual NetDiligence Cyber Risk and Privacy Liability Forum June 5-7 at the Hyatt Bellevue in Philadelphia. Jason oversees the consulting organization and all services that Crypsis provides its clients, and manages incident response and security services engagements. The Crypsis security experts focus on educating and assisting the potential targets and victims of cyber attacks.
To find out more about this awesome CLE-credited event click here or contact us for more information. We’d love to hear from you!
Ready to join us in Philly? We don’t blame you! There is still plenty of time to Register!