As organizations move their resources to the cloud, attackers are increasingly looking for ways to abuse Active Directory Federation Services (AD FS) in hybrid cloud environments to accomplish their objectives. Learn from world-class defenders who responded to the NOBELIUM nation-state attack that abused AD FS. In this session we’ll cover: How defenders can analyze an AD FS attack once compromise is suspected Walk through a demo of commo...

Active Directory domains are living, ever-evolving assets that organizations need to secure now. Adversary success rates depend on mis- or loosely configured domains to harvest credentials, move laterally, and achieve their objectives. Luckily for defenders, the best Active Directory defense is a proactive defense: one that provides immediate and vital insight organizations can use to protect their domains. In this review, SANS instructor and...

Assessing applications for security risks and then remediating those risks at scale, without slowing down the development process, can be quite the challenge. Traditional security tools struggle to provide accurate and comprehensive visibility to security risks within modern application workloads, and typically weren’t built with cross-functional ownership in mind to prioritize and remediate risk findings. As a result, AWS offers a suite...

For years, cyber criminals have been exploiting organizations across the globe, profiting from their actions while we struggle to stay one step ahead of our current defenses. To combat advanced attacks, such as ransomware, we must better understand our threat actors and how they have evolved. Hosted by SANS Instructor Chris Dale and a representative from Cisco, this webcast will explore how organizations can modernize their security postures t...

Security has always been one of the prime concerns for any growing business. In a world where technology is continually evolving, companies are constantly stumbling onto new vulnerabilities. One wrong move in the data management space and companies leave themselves vulnerable to shattering attacks. The increasingly multifaceted landscape means that more groups are turning towards a zero-trust security framework. This approach asks companies to...

The internet attack surface is a fast-growing, fragmented problem, making threat discovery, assessment, and remediation challenging—especially at scale. Security teams must protect brands and prevent fraud across websites, email systems, social media sites, application stores, and marketplaces. Employees, as well as supply chains, can be affected. The time for using older methods of dealing with this problem are well behind us. Join Seni...

Multicloud is inevitable. In fact, it’s likely you’re already using different clouds like AWS, Google Cloud, and Azure for various functions. But, how do you address risk and ensure proper security practices across all of your cloud accounts and deployments? In this session, we’ll look at best practices for secure DevOps across multiple clouds. We’ll take a comprehensive look at your lifecycle from authentication and in...

In this webinar series, Jake Williams takes a hands-on approach to forensics packet analysis, using real-world examples to demonstrate how to analyze network packet data to uncover and investigate threats. The series takes a protocol-by-protocol approach. It is an ideal introduction to packet forensics for beginners and a great source of expert tips and tricks for more experienced security analysts. In this episode Jake takes a deep dive into DNS.

The goal of SecOps teams is to monitor, detect, investigate, and respond to suspicious activity and events. This often leaves them in a reactive state — with minimal opportunity to reduce false-positives and innovate. It doesn’t have to be this way, though. One key aspect of forward-looking, mature SecOps programs is the ability to gather context from data sources to inform — and expedite — investigations. In this sessi...

In addition to highlighting trends in vulnerability management, this year's survey digs a little deeper into how cloud and the expanding remote workforce affected the ways in which organizations handle reporting and remediation. On this webcast, sponsor representatives will join the survey author for an analysis of the survey, and share their thoughts on emerging vulnerability management trends. Click the Get Registered button to sign up for t...