This past Thursday, DomainTools presented a webinar with SANS analyst Dave Shackleford regarding tactics and strategies for tapping into the goldmine that is Open Source Intelligence (OSINT) and DNS information for understanding cyber attacks and threat actors.
Our very own Tim Helming (Director of Product Management) teamed up with Dave Shackleford for a powerful balance of experience and analysis. Tim has 14 years of experience in cybersecurity including network to cloud application attacks and peer-to-peer cloud storage solutions. Dave is a GIAC technical director and board member of the SANS Technology institute. He is also the founder of Voodoo Security and has extensive experience designing and configuring virtualized infrastructures.
This webinar covers:
- A brief timeline of attacker techniques, focusing on different styles of command and control, as well as data exfiltration
- Current examples of breaches and attack scenarios where DNS and domain profile information could have helped detect or prevent the attacks
- Specific indicators of attack and potential compromise that can be found in DNS, both internally and externally
- Ways to better defend against attacks and data exfiltration using DNS and large-scale threat intelligence
Be sure to check out our upcoming webinar, Using Threat Intelligence To Improve Enterprise Cyber Defense, with Dark Reading on Wednesday, September 16th at 10 AM PST.