unicorn trio poses-03 (1) (1)-2-1

    Hunting Through The SIEM (w/ Splunk) 

    Join our immersive workshop where you'll dive deep into defensive cybersecurity by deploying a multi-staged threat via SCYTHE, and hunting for it across the SIEM!

    This hands-on experience will guide you through the intricacies of using Splunk (SIEM) to hunt for and identify malicious activities. You'll learn to map these activities to the MITRE ATT&CK matrix, utilizing Sysmon and Windows logs to gather crucial endpoint data. Gain practical skills in threat detection and incident response, and enhance your ability to protect against sophisticated cyber threats. Don't miss this opportunity to elevate your cybersecurity expertise—sign up now!  

    📅  18 June 2025 | 🕐 1 - 4 PM (ET) 

    What you will walk away with: 
    🦄 Techniques for correlating detected activities to specific ATT&CK techniques. 
    🦄 Hands-on skills in deploying multi-staged threats.
    🦄 Ability to analyze endpoint logs in a SIEM to uncover malicious activities.       
    🦄 Creating and using custom dashboards and queries for threat detection.
    🦄 Ability to operationalize detection rules into alerts and queries.

    TT Covers (4)-1

    Why You Should Join

    In today's ever-evolving cyber landscape, the ability to detect, analyze, and respond to threats is critical. This workshop offers a unique opportunity to gain hands-on experience, working with leading tools in the field to enhance your cybersecurity capabilities.

    • Hands-On Practice: Apply your learning in real-time with SCYTHE and Splunk.
    • Practical Insights: Master critical skills needed for advanced threat detection and incident response.
    • MITRE ATT&CK Expertise: Understand how to map and mitigate threats based on this industry-standard framework.

    What You Need

    • A Computer: Just a device with a compatible web browser.
    • An Appetite to Learn: No extensive prerequisites—just your passion for cybersecurity!

    📅  18 June 2025

    🕐 1 - 4 PM (ET)

    Please register using a valid email address so we can provision your VMware lab environment before the workshop

    Register Now!