Changes

From Security Weekly Wiki
Jump to navigationJump to search
Added By Paul's Craptastic PPWorks Code
= 2. Technical Segment - PCAPS or it didn't happen - 07:00 PM-07:45 PM =
<!--
************************* MAKE CHANGES IN THE TEMPLATES BELOW! ***************************
-->
 
=== Sponsored By ===
<gallery mode="packed" widths=150px heights=150px>
Image:Gravwell-1.png
</gallery>
<center><strong>Visit https://securityweekly.com/gravwell for more information!</strong></center>
=== Description ===
Threat hunting activities often require packet capture analysis but capturing and storing PCAP at scale is rough. This segment covers open source tools for collecting packet captures on demand within a threat hunting use case in Gravwell.
 
 
https://github.com/gravwell/ingesters/tree/master/PacketFleet
 
https://github.com/google/stenographer
 
https://www.gravwell.io/blog/pcap-collection-and-analysis-on-demand-with-gravwell-packet-fleet
 
 
 
==Presenter(s)==
 
 
===Corey Thuen===
<gallery mode="nolines" widths=175px heights=175px>
 
Image:Corey_Thuen_-0.jpg|'''[https://twitter.com/@CoreyThuen Corey Thuen]''' is Co-Founder at Gravwell<br>
 
</gallery>
Corey Thuen is a founder of Gravwell and has spent over a decade doing cybersecurity at places like Department of Energy national labs, Digital Bond, and IOActive. That experience is now driving development of a full-stack analytics platform built to alleviate pain points he personally experienced from inflexible tools.<br>
7,799

edits

Navigation menu