Bots/Malware Detection by Leveraging Open Source Resources
Speaker: Chuck Moran, IT Security Analyst, Southern Company
This session reviews methods for leveraging open-source community resources, such as Snort and BotHunter, within ArcSight implementations to help detect and pinpoint previously undetected threats. Come learn about malware threat feeds, and how to create simple scripts and ArcSight ESM rules to automate them. Join us if you are working within the confines of a budget or would like to leverage open-source detection capabilities within your current ArcSight implementations to reduce risk and eliminate previously undetected cyberthreats.