Dustin Lee
Dustin is a technical marketing engineer for Corelight who loves information security and automation. He is currently the Team Lead for Corelight in the Black Hat NOC and has been an advocate of NSM for years. He was previously a part of the Security Onion Solutions team as an instructor and automation developer for the Army's DDS-M kit. Dustin lives with his four children in Marietta, GA, where he also currently serves as the senior Cyber warrant officer for the Georgia Army National Guard.
@_dustinlee
Preferred Social Media –X/Twitter
Session
In the fast-paced and ever-evolving world of cybersecurity, staying ahead of threats requires cutting-edge tools and techniques, especially on the Black Hat conference network. The latest exploits and attacks are constantly present in this challenging and austere environment. Still, through real-world stories, we will explore the clever strategies and techniques used to uncover threats and secure the network against those sophisticated attacks. This presentation will describe using Zeek and Suricata, two leading open-source NDR tools, to defend the Black Hat network globally. It will also cover interesting findings, ideas, and methodologies used for threat hunting and discuss the open-source tools and technologies that power the network detection stack.