Workshop (remote-only): Wireshark for Incident Response & Threat Hunting


Details
NOTE: We'll be doing remote-only events due to COVID-19 until further notice. You still need to RSVP for the event, please do so if you plan on attending.
OWASP Santa Barbara is bringing a DEFCON 27 workshop to your home. This workshop will take a student’s Wireshark skills to the next level with a heavy emphasis on incident response, threat hunting, and malicious network traffic analysis. We will begin with a brief introduction to Wireshark and other Network Security Monitoring (NSM) tools/concepts. Placement, techniques, and collection of network traffic will be discussed in detail. Throughout the workshop, we’ll examine what different attacks and malware look like in Wireshark. Students will then have hands-on time in the lab to search for Indicators of Compromise (IOCs) and a potential breach to the network. There will be plenty of labs to take home for additional practice.
See workshop and trainer details at https://bit.ly/2UdD0B0.
### Event Agenda ###
05.30 pm -- Event Kickoff & Announcements, by Walter Martín Villalba, OWASP SB Leader / https://twitter.com/act1vand0
05.45 pm -- Workshop: Wireshark for Incident Response & Threat Hunting, by Michael Wylie, Director of Cybersecurity Services at Richey May Technology Solutions / https://twitter.com/TheMikeWylie
07.00 pm -- Break
07.10 pm -- Workshop (continued)
08.30 pm -- Workshop End
Location: online using Zoom --> https://cccconfer.zoom.us/j/100121462
Martín & the OWASP SB Team.
PS: if you've been enjoying our frequent events since the relaunch in late 2018, please take a minute to rate our group on meetup.com.

Workshop (remote-only): Wireshark for Incident Response & Threat Hunting