Skip to main content

Experts Talk. Why master YARA: from routine to extreme threat hunting cases

 

Experts Talk. Why master YARA: from routine to extreme threat hunting cases

Image


ABOUT THE WEBINAR


YARA is often called the “pattern matching Swiss knife for malware researchers and everyone else”, and for a good reason: YARA detection rules help find malware, exploits and 0-days that couldn’t be found by other methods.

How could YARA benefit you and your organization? What are the ingredients of a good YARA rule? How can you use YARA to find unknown threats and anomalies?

Join our online session with Costin Raiu, Director of Kaspersky’s Global Research an Analysis Team (GReAT) and Juan Andres Guerrero-Saade, Adjunct Professor of Strategic Studies, Johns Hopkins SAIS, and moderated by Dan Demeter, senior security researcher at Kaspersky’s GReAT – cybersecurity experts who have been using YARA more than 6 years— for their insights and tips on using it for threat hunting.

Held on September 3 at 2 PM GMT, the webinar will also include an exclusive preview by Yury Namestnikov, Head of GReAT EEMEA Research Center, of the new Kaspersky online self-study training ‘Hunt APTs with YARA like a GReAT Ninja’ which will launch in September. Armed with the knowledge, tools and YARA rules from this training, any IT security professional interested can study the Kaspersky Global Research & Analysis Team’s best practices on threat hunting with YARA. In addition to the practical insights from the company’s world-renowned cybersecurity experts, training includes access to a special virtual lab where learners can practice their new skills by working on 20+ threat hunting exercises – all based on Kaspersky’s exclusive research.

In this webinar you will be able to:

- Hear from cybersecurity experts their tips and insights on efficient threat hunting with YARA
- See a detailed demo of our renowned training and have a chance to win a free YARA training worth 1400 USD
- Tune into a threat hunting panel discussion

Comments

Post a Comment

Popular posts from this blog

How to secure PayPal

How to secure PayPal By- Aarti Jatan Your online finances need proper protection. Learn how to secure your PayPal account. With hundreds of millions of users around the world, PayPal has long been an international leader in the electronic payments industry. But as we know, money never fails to attract fraud, especially now, with as much of life as possible taking place online. Here is what you need to do to stay safe when sending or receiving money through PayPal. How secure is PayPal? As a matter of fact, PayPal is quite a reliable platform that maintains a high level of security — and keeps improving it. Thus, the company has an official program deploying white hat hackers to unearth vulnerabilities (the so-called bug bounty), under which it has already paid out almost $4 million since 2018. The program also covers several other services owned by PayPal, such as Venmo. PayPal also treats its users’ data responsibly: It did have one reliably reported leak, in 2017, but the leak invol...
Post a Comment
Read more

A DEEP DIVE INTO THE OFFICIAL DOCKER IMAGE FOR PYTHON

  A DEEP DIVE INTO THE OFFICIAL DOCKER IMAGE FOR PYTHON The official Python image for Docker is quite popular, and in fact I recommend one of its variations as a base image . But many people don’t quite understand what it does, which can lead to confusion and brokenness. In this post I will therefore go over how it’s constructed, why it’s useful, how to use it correctly, as well as its limitations. In particular, I’ll be reading through the python:3.8-slim-buster variant, as of August 19, 2020 , and explaining it as I go along. Reading the Dockerfile The base image We start with the base image: FROM debian:buster-slim That is, the base image is Debian GNU/Linux 10, the current stable release of the Debian distribution, also known as Buster because Debian names all their releases after characters from Toy Story. In case you’re wondering, Buster is Andy’s pet dog . So to begin with, this is a Linux distribution that guarantees stability over time, while providing bug fixes. The slim...
Post a Comment
Read more

Five regular checks for SMBs

Five regular checks for SMBs By- Aarti Jatan Five things that, if neglected, can cost SMBs dearly. It is not always economically viable for small and medium-size businesses to maintain a dedicated IT security team, so it often happens that one person is in charge of monitoring the entire infrastructure. Sometimes he or she is not even a permanent, full-time employee. Sure, a good administrator can do a lot, but even a pro might miss something, particularly if issues are mounting and time is short. So, it’s worth establishing a few habits. Here are our Top 5 regular checks. Renew the corporate site security certificate Any website that requests or processes user data must have an SSL certificate. It protects information entered by visitors from being intercepted, and almost all modern browsers  warn  users that sites without an SSL certificate are insecure. That can scare off potential customers. Your website most likely has an SSL certificate, but its validity period is limite...
Post a Comment
Read more