Search the site...

BSIDES SATX 2023
  • About
  • venue
  • Code of Conduct
  • News
  • Sponsors
  • Contact
  • Archives
    • 2022 >
      • Sponsors
      • Schedule >
        • Speaker Schedule 2022
        • Events Schedule 2022
    • 2021 >
      • Participate >
        • Speaker Schedule
        • Events Schedule 2021
        • Community
        • Career Coaching and Resume Review
      • Contribute >
        • CFP
        • Call for Events
        • Call for Volunteers
      • Sponsors
    • 2020 >
      • Schedule >
        • Presentations
        • Events
      • Community
      • CFP
      • Sponsors
    • 2019 >
      • About
      • Schedule >
        • Presentations
        • Code of Conduct
        • Workshops
        • Volunteers
        • CTFs
        • Location
        • Villages
        • Community
      • CFP
      • Sponsors
      • Contact
    • 2018 >
      • About
      • Code of Conduct 2018
      • Schedule >
        • Presentations
        • Villages
      • Location
      • CFP
      • Contact
      • Sponsors >
        • Sponsor Relevant Dates and Details
    • 2017 >
      • About
      • Location
      • Registration
      • Schedule
      • CTF
      • Workshops
      • Sponsors
      • Volunteers
      • Contact
    • 2016 >
      • News 2016
      • About 2016
      • About2 2016
      • Registration 2016
      • Contact 2016
      • CTF 2016
      • Location 2016
      • Volunteers 2016
      • Schedule 2016
      • Sponsors 2016 >
        • Example CFP Submission
  • About
  • venue
  • Code of Conduct
  • News
  • Sponsors
  • Contact
  • Archives
    • 2022 >
      • Sponsors
      • Schedule >
        • Speaker Schedule 2022
        • Events Schedule 2022
    • 2021 >
      • Participate >
        • Speaker Schedule
        • Events Schedule 2021
        • Community
        • Career Coaching and Resume Review
      • Contribute >
        • CFP
        • Call for Events
        • Call for Volunteers
      • Sponsors
    • 2020 >
      • Schedule >
        • Presentations
        • Events
      • Community
      • CFP
      • Sponsors
    • 2019 >
      • About
      • Schedule >
        • Presentations
        • Code of Conduct
        • Workshops
        • Volunteers
        • CTFs
        • Location
        • Villages
        • Community
      • CFP
      • Sponsors
      • Contact
    • 2018 >
      • About
      • Code of Conduct 2018
      • Schedule >
        • Presentations
        • Villages
      • Location
      • CFP
      • Contact
      • Sponsors >
        • Sponsor Relevant Dates and Details
    • 2017 >
      • About
      • Location
      • Registration
      • Schedule
      • CTF
      • Workshops
      • Sponsors
      • Volunteers
      • Contact
    • 2016 >
      • News 2016
      • About 2016
      • About2 2016
      • Registration 2016
      • Contact 2016
      • CTF 2016
      • Location 2016
      • Volunteers 2016
      • Schedule 2016
      • Sponsors 2016 >
        • Example CFP Submission

 INTRODUCTION TO DEFINING TTPS FROM INCIDENT DATa

About the workshop
This analytics workshop is for those who are curious about or need a refresher on how to derive the use of tactics, procedures and techniques from within incident data. To get the most out of this workshop, you should feel comfortable with basic analysis and hunting methods.  The workshop will provide a the random assortment of information that represents data from an incident. You are then taken through a series of steps to analyze the information to look for artifacts, patterns and hints that enable you to build and confidence rate techniques, procedures and tactics to better under the process flow of the adversary during the incident.

About CyberDefenses, Inc.
CyberDefenses, Inc.'s mission is to shield customers against cyber threats through comprehensive oversight, defense, and training services. Founded in 2001 by a team of returning military, cyber security veterans, CyberDefenses has a dual focus on government/public sector and private sector organizations.  Through a comprehensive suite of managed services – including security oversight, identity management, security monitoring, managed detection, incident response and certification / skill training – battle tested cyber security measures are affordably offered to buyers.

You will learn to:
  • Identify tactics employed from incident data using the artifacts & vectors model 
  • Define procedures employed from incident data using the hints & inference model 
  • Separate the presence of a technique from that of a procedure

You will need:
  • A laptop
  • Three free hours
  • Experience with incident response, threat hunting and forensics.
  • Familiarity with the various types of incident information and network data; familiarity with basic analysis and hunting methods. 
  • Software capable of opening spreadsheets, documents and CSV files. Command line capabilities here would be helpful.
  • To sign up, see below

Class size: 20
When: 13:00-16:00
Where: Richter 106

sign up

Space is limited, so you'll need to sign up beforehand to participate in this workshop. Please click the button below in order to sign up.
Click here to sign up