Threat Hunting in Windows: How to Find the Adversary Before the Damage

Eric Cole, SANS Instructor

About this Webinar

The approaches and goal of security have changed over the years. Security was once about preventing and stopping the adversary. Today, security has shifted to one main goal: control and reduce the amount of damage caused by the adversary. The area where most organizations are failing is timely detection. If an organization could identify the adversary early on in the compromise, the impact to the organization could be considerably reduced. The key to success is to shift from reactive approaches like incident response, to proactive approaches, most commonly referred to as threat hunting.

Join SANS Top 20 Critical Controls Author and industry-recognized security expert, Dr. Eric Cole in this upcoming webinar, where he will explore:

  • How adversaries compromise a Windows system
  • Methods of finding and tracking adversaries
  • How to identify and reduce the dwell time of a compromise
  • Metrics that can be used to track the effectiveness of security controls

Join Dr. Eric Cole and learn how to find the adversary, control the damage, and minimize the impact to your organization.

Gated content video preview image Complete the form to view

Eric Cole, SANS Instructor

Dr. Cole is an industry-recognized security expert with over 20 years of hands-on experience. Dr. Cole has experience in information technology with a focus on helping customers focus on the right areas of security by building out a dynamic defense. Dr. Cole has a master's degree in computer science from NYIT and a doctorate from Pace University with a concentration in information security. He served as CTO of McAfee and Chief Scientist for Lockheed Martin. Dr. Cole is the author of several books, including Advanced Persistent Threat, Hackers Beware, Hiding in Plain Sight, Network Security Bible 2nd Edition, and Insider Threat. He is the inventor of over 20 patents and is a researcher, writer, and speaker. He is also a member of the Commission on Cyber Security for the 44th President and several executive advisory boards. Dr. Cole is the founder and an executive leader at Secure Anchor Consulting where he provides leading-edge cyber security consulting services, expert witness work, and leads research and development initiatives to advance the state-of-the-art in information systems security. Dr. Cole was the lone inductee into the InfoSec European Hall of Fame in 2014. Dr. Cole is actively involved with the SANS Technology Institute (STI) and is a SANS faculty Fellow and course author who works with students, teaches, and develops and maintains courseware.