Security

See How IBM's Integrated Threat Management Solution Detects a Real Attack 

Sun July 19, 2020 06:30 AM

The ATT&CK Demo shows how IBM Security's threat management tooling enables organizations to detect, investigate and remediate a real attack, using the latest hacking tools and techniques, perpetrated against an up-to-date Windows 8.1 victim machine. The demo will show:

  • How IBM Security's integrated SIEM and SOAR technology successfully detects phishing involving a real malware site
  • A Metasploit module being used in a pass-the-hash attack
  • How the User Behavior Analytics app automatically dashboarding internal threat
  • DNS Tunneling being used for C2 and exfiltration
  • How the Watson Advisor app anatomizes the attack and mapping the observed techniques onto the MITRE ATT&CK Framework.




#QRadar
#Resilient

Statistics

0 Favorited
50 Views
0 Files
0 Shares
0 Downloads