BSidesAugusta 2024

BSidesAugusta 2024

Dustin Lee

Dustin is a technical marketing engineer for Corelight who loves information security and automation. He is currently the Team Lead for Corelight in the Black Hat NOC and has been an advocate of NSM for years. He was previously a part of the Security Onion Solutions team as an instructor and automation developer for the Army's DDS-M kit. Dustin lives with his four children in Marietta, GA, where he also currently serves as the senior Cyber warrant officer for the Georgia Army National Guard.


Social Media User/Handle

@_dustinlee

Preferred Social Media

X/Twitter


Session

10-05
15:45
60min
Tales from Hunting in the Black Hat NOC
Dustin Lee

In the fast-paced and ever-evolving world of cybersecurity, staying ahead of threats requires cutting-edge tools and techniques, especially on the Black Hat conference network. The latest exploits and attacks are constantly present in this challenging and austere environment. Still, through real-world stories, we will explore the clever strategies and techniques used to uncover threats and secure the network against those sophisticated attacks. This presentation will describe using Zeek and Suricata, two leading open-source NDR tools, to defend the Black Hat network globally. It will also cover interesting findings, ideas, and methodologies used for threat hunting and discuss the open-source tools and technologies that power the network detection stack.

Track 2