How to Level Up Your SOC Analyst Skill with Power Tool: Sigma

13.528 Lượt nghe

00:00

Update Required To play the media you will need to either update your browser to a recent version or update your Flash plugin.

Tải MP3

MÔ TẢ MP3TIẾP THEO

How to Level Up Your SOC Analyst Skill with Power Tool: Sigma

In this video, we are fully exploring Sigma, the open source toolset that allows indicators of compromise (IOC) to have a generic signature file that can be translated using Sigma into a variety of SIEM platforms.

We are talking with John Hoyt, deputy director information security and long time SOC manager about the use of Sigma in production and how to write Sigma signatures.

TIME MARKERS:
1:13 Intro
INTERVIEW with John Hoyt
4:49 Who is John Hoyt?
5:34 What is Sigma?
7:04 What kind of logs can Sigma work with?
8:58 How long does it take to write a Sigma detection?
15:00 Where do you get Sigma and how to get started using it? 
19:22 John shows us writing a Sigma rule 
24:58 Compiling a Sigma rule 
28:37 Importing and using with Splunk
34:02 Outro
34:11 One Cool Thing

RESOURCES:
SIGMA - https://github.com/Neo23x0/sigma
John Hoyts YouTube Channel - https://www.youtube.com/channel/UCF3lJGqfgHaFqcaPx-izLNg

🚨Hit SUBSCRIBE to catch weekly videos. Hit the BELL if you'd like to be notified when a new video is published.

Check out my other videos:
How to get into cybersecurity with no experience: https://youtu.be/4d-qmWLt90E

🤝 LET'S CONNECT 🤝
🐦 TWITTER  ➡️ @Gerald_Auger https://twitter.com/Gerald_Auger
🕴🏻 LINKEDIN ➡️  www.linkedin.com/in/geraldauger
Discord https://discord.gg/VsNWyZnJBT
🆓 MY CURATED LIST OF FREE CYBERSECURITY RESOURCES: ➡️
https://github.com/gerryguy311/Free_CyberSecurity_Professional_Development_Resources

🥰 Loving SimplyCyber? 
👉🏼 Check out SimplyCyber Branded Gear at TeeSpring: https://teespring.com/stores/simplycyber

🚀🔥 SUBSCRIBE TO SIMPLY CYBER ON YOUTUBE
Subscribe ➡️  https://www.youtube.com/c/geraldauger

★☆★ Referrals: ★☆★
My livestreams are produced through StreamYard. You can use it for free; if you sign up using my referral code below you get a $10 credit if you ever upgrade to pro plan.
STREAMYARD $10 REFERRAL - https://streamyard.com?pal=6534222448689152


 
#cybersecurity#Cyber #InformationSecurity #Risk #Privacy #getAjob #cybersecurity #infosec  #career #selfdevelopment #continuedEducation #entrylevel #careergrowth #security #tech #technology #security #simplycyber					

How to Level Up Your SOC Analyst Skill with Power Tool: Sigma

Nhạc Theo Chủ Đề

Liên kết website

How to Level Up Your SOC Analyst Skill with Power Tool: Sigma

Những bài liên quan

Chưa có bài liên quan nào!