Indicator Expansion Techniques –Tracking Cyber Threats via DNS and Netflow Analysis
• Presentation
In this presentation, Michael Jacobs describes how to use DNS and netflow analysis to track cyber threats.
Publisher
Software Engineering Institute
Topic or Tag
Abstract
As the number of compromises escalates and our visibility into the network grows, it becomes imperative to create automated operational solutions to feed your Computer Network Defense machine.
Tracking cyber threats through the coupling of DNS data and netflow analysis allows for a much higher level of confidence in the identification of malicious activity.
Part of a Collection
Flocon 2012 Collection
This content was created for a conference series or symposium and does not necessarily reflect the positions and views of the Software Engineering Institute.