CSN04: Bots/Malware Detection by Leveraging Open Source Resources

Document created by jmerrill on Sep 10, 2010
Version 1Show Document
  • View in full screen mode

CSN04
Bots/Malware Detection by Leveraging Open Source Resources
Speaker:
Chuck Moran, IT Security Analyst, Southern Company
Level: Intermediate
This session reviews methods for leveraging open-source community resources, such as Snort and BotHunter, within ArcSight implementations to help detect and pinpoint previously undetected threats. Come learn about malware threat feeds, and how to create simple scripts and ArcSight ESM rules to automate them. Join us if you are working within the confines of a budget or would like to leverage open-source detection capabilities within your current ArcSight implementations to reduce risk and eliminate previously undetected cyberthreats.

 

 

2 people found this helpful

Outcomes