In this session, SANS instructor Ismael Valenzuela will explain the methods and techniques used by world-class IR teams to leverage the power of open-source tools like Yara and Bro to do IOC hunting when reacting to emergency incidents. State-of-the-art techniques will be presented along with a new open-source tool called rastrea2r, designed to assist with collecting and hunting for IOCs with gusto and style!

Ismael Valenzuela, Lead IR/Forensics Technical Practice Manager, Intel Security;
Instructor, SANS Institute

Ismael Valenzuela (SANS Instructor & GSE #132), has 15+ years of international experience in cybersecurity consulting, teaching and public speaking. He currently works as Practice Manager at Intel Security, leading the delivery of SOC, Incident Response, Forensics and Threat Research services for major public and private organizations in North America.

ATTEND THE 2017 THREAT HUNTING SUMMIT: http://dfir.to/ThreatHunting2017

SANS THREAT HUNTING AND INCIDENT RESPONSE COURSES
FOR508: Digital Forensics, Incident Response, & Threat Hunting: http://sans.org/FOR508
FOR572: Network Forensics: http://sans.org/FOR572
FOR578: Cyber Threat Intelligence: http://sans.org/FOR578