BSides Toronto 2020

Detection Mastery - War Stories From The Hunters Side!
2020-10-18, 15:30–15:50, Twitch

Threat Hunting is a rapidly evolving topic in cyber security. Armed with more than 20 years of enterprise and military experience, being on both red and blue sides - we plan to determine the approach to next generation detection.


The defending industry is shifting from Reactive to Proactive mode by deploying both Red Teams and Threat Hunters to constantly challenge the controls organizations deploy. Threat Hunting is designed to provide a perceived sense of control to the security leaders. The idea is to detect well and then hunt to eliminate gaps & blind-spots. The remaining question is how to do it right! In this talk we will explore what Threat Hunting is, why it has emerged and how you can build it well in your organization.
We plan to provide relevant hunting scenario examples, talk about real life battles while doing threat hunting and eventually address the pain points of real Enterprise environments. We will cut to the chase by dissecting the process of detection mastery to find the next APT.

Ilya Kolmanovich -
Ilya is a security researcher who specializes in malware analysis and threat intelligence combining a decade of experience from both Israeli and Canadian InfoSec communities. Recently, he has been working on building Digital & Cyber Threat Hunting Programs for RBC. In his previous life, Ilya lead threat and malware research for top security vendors like RSA, Trusteer & IBM Security, detecting and eliminating threats for millions of customers and their private networks.
Passionate about hunting and automation.

Felix Kurmish -
Cyber Threat Hunter & Researcher with a proven history of working in the Cyber Security, Information Technology, Financial industry and Military industry. Experienced in Malware/APT Research, Threat Hunting, Red/Blue Team, Cyber Threat Intelligence, Digital Forensics, Malware Analysis and Reverse Engineering. Been on both Offensive and Defensive sides, bringing a Holistic point of view and mainly love to solve complex technological problems.

Cyber Threat Hunter & Researcher with a proven history of working in the Cyber Security, Information Technology, Financial industry and Military industry.

Experienced in Malware/APT Research, Threat Hunting, Red/Blue Team, Cyber Threat Intelligence, Digital Forensics, Malware Analysis and Reverse Engineering.

Been on both Offensive and Defensive sides, bringing a Holistic point of view and mainly love to solve complex technological problems.