Companies Home Search Profile
TrainingHub TrainingHub
The Foundations of Threat Hunting: Organize and design effective cyber threat hunts to meet business needs
The Foundations of Threat Hunting: Organize and design effective cyber threat hunts to meet business needs
Download pdf
The Foundations of Threat Hunting: Organize and design effective cyber threat hunts to meet business needs

The Foundations of Threat Hunting: Organize and design effective cyber threat hunts to meet business needs

Category

Cyber Security

0 View
Build and mature a threat hunting team capable of repeatably stalking and trapping advanced adversaries in the darkest parts of an enterprise

Threat hunting is a concept that takes traditional cyber defense and spins it onto its head. It moves the bar for network defenses beyond looking at the known threats and allows a team to pursue adversaries that are attacking in novel ways that have not previously been seen. To successfully track down and remove these advanced attackers, a solid understanding of the foundational concepts and requirements of the threat hunting framework is needed. Moreover, to confidently employ threat hunting in a business landscape, the same team will need to be able to customize that framework to fit a customer's particular use case.

This book breaks down the fundamental pieces of a threat hunting team, the stages of a hunt, and the process that needs to be followed through planning, execution, and recovery. It will take you through the process of threat hunting, starting from understanding cybersecurity basics through to the in-depth requirements of building a mature hunting capability. This is provided through written instructions as well as multiple story-driven scenarios that show the correct (and incorrect) way to effectively conduct a threat hunt.

By the end of this cyber threat hunting book, you'll be able to identify the processes of handicapping an immature cyber threat hunt team and systematically progress the hunting capabilities to maturity.

Download pdf
ISBN-10
180324299X
ISBN-13
978-1803242996
Publisher
Packt Publishing
Price
34.99
File Type
PDF
Page No.
246
Jeremy Thompson

Jeremy Thompson

Discover more of the author’s books, see similar authors, read author blogs and more ...
William Copeland

William Copeland

Discover more of the author’s books, see similar authors, read author blogs and more ...

About the Author

Chad Maurice is a life-long cyber security enthusiast with a background in both offensive and defensive teams. He has led Red Teams in physical and network security tests as well as overseen planning and daily management for numerous Incident Response and Threat Hunting teams that provided defenses for Enterprise networks spanning around the globe.

He has earned a Masters degree in Information Systems Security/Information Assurance from Capella University in 2011. Additionally, Chad has achieved an array of industry certifications ranging from OSCP to CISSP. Currently, he is an engineer at a Fortune 100 company enhancing defensive capabilities for all of their business assets.

Jeremy Thompson is a tenacious leader and technical expert who has dedicated the last two decades to the profession of cyber security. His background has broadened him from managing infrastructure in support of a large-scale network to directing operations for an organization conducting threat hunts on IT and OT networks around the globe.

He earned a Masters degree in Information Systems Management from the University of Nebraska at Omaha in 2014. Additionally, Jeremy has achieved the following certifications: CCNA Cyber Operations, GSEC, GCFA, GDAT, GFNA, and CISSP. Currently, he is an Incident Response and Operations Manager for CyberDefenses Inc out of Austin, TX.

William Copeland is a renowned leader and technician within the cyber defense community. He has endeavored the last two decades to clear the path for the operators under his leadership to become more efficient and effective cyber defenders.

He earned a Bachelors degree in Information Technology from Western Governors University in 2018. Additionally, William has accomplished the following certifications: Security+, Linux+, Project+, Network+, GCFA, GPEN, GNFA, GREM, GDAT, GCDA, GSEC, GCIA, GCIH, SSAP, GCFE, and GCTI. Currently, he is a senior leader within a cyber hunting organization providing planning, coordination, integration, and execution of defensive teams that track and eradicate adversaries on customer networks.

  • Understand what is required to conduct a threat hunt
  • Know everything your team needs to concentrate on for a successful hunt
  • Discover why intelligence must be included in a threat hunt
  • Recognize the phases of planning in order to prioritize efforts
  • Balance the considerations concerning toolset selection and employment
  • Achieve a mature team without wasting your resources

This book is for anyone interested in learning how to organize and execute effective cyber threat hunts, establishing extra defense capabilities within their company, and wanting to mature an organization's cybersecurity posture. It will also be useful for anyone looking for a framework to help a hunt team grow and evolve.

  1. An Introduction to Threat Hunting
  2. Requirements and Motivations
  3. Team Construct
  4. Communication Breakdown
  5. Methodologies
  6. Threat Intelligence
  7. Planning
  8. Defending the Defenders
  9. Hardware and Toolsets
  10. Data Analysis
  11. Documentation
  12. Deliverables
  13. Post-Hunt Activity and Maturing A Team
  14. Appendix

Similar Books

Cybersecurity Awareness (Advances in Information Security, 88) PDF
Cybersecurity Awareness (Advances in Information Security, 88)
Jerry Andriessen
Cyber Security
Security and Artificial Intelligence: A Crossdisciplinary Approach (Lecture Notes in Computer Science, 13049) PDF
Security and Artificial Intelligence: A Crossdisciplinary Approach (Lecture Notes in Computer Science, 13049)
Lejla Batina
Artificial Intelligence
Artificial Intelligence for Cybersecurity (Advances in Information Security Book 54) PDF
Artificial Intelligence for Cybersecurity (Advances in Information Security Book 54)
Mark Stamp
Artificial Intelligence
Machine Learning for Cyber Agents: Attack and Defence (Advanced Sciences and Technologies for Security Applications) PDF
Machine Learning for Cyber Agents: Attack and Defence (Advanced Sciences and Technologies for Security Applications)
Stanislav Abaimov
Machine Learning
Cyber Security: Critical Infrastructure Protection (Computational Methods in Applied Sciences Book 56) PDF
Cyber Security: Critical Infrastructure Protection (Computational Methods in Applied Sciences Book 56)
Martti Lehto
Cyber Security
Law and Technology in a Global Digital Society: Autonomous Systems, Big Data, IT Security and Legal Tech PDF
Law and Technology in a Global Digital Society: Autonomous Systems, Big Data, IT Security and Legal Tech
Georg Borges
Big Data
Quantum Computing Environments PDF
Quantum Computing Environments
Sitharama S. Iyengar
Cyber Security
Advances in Computing, Informatics, Networking and Cybersecurity: A Book Honoring Professor Mohammad S. Obaidat’s Significant Scientific Contributions (Lecture Notes in Networks and Systems 289) PDF
Advances in Computing, Informatics, Networking and Cybersecurity: A Book Honoring Professor Mohammad S. Obaidat’s Significant Scientific Contributions (Lecture Notes in Networks and Systems 289)
Sudip Misra
Cyber Security
Handbook of Digital Face Manipulation and Detection: From DeepFakes to Morphing Attacks (Advances in Computer Vision and Pattern Recognition) PDF
Handbook of Digital Face Manipulation and Detection: From DeepFakes to Morphing Attacks (Advances in Computer Vision and Pattern Recognition)
Christian Rathgeb
Cyber Security
Viruses, Hardware and Software Trojans: Attacks and Countermeasures PDF
Viruses, Hardware and Software Trojans: Attacks and Countermeasures
Anatoly Belous
Cyber Security
Cyber Warfare – Truth, Tactics, and Strategies: Strategic concepts and truths to help you and your organization survive on the battleground of cyber warfare PDF
Cyber Warfare – Truth, Tactics, and Strategies: Strategic concepts and truths to help you and your organization survive on the battleground of cyber warfare
Chase Cunningham
Cyber Security
Cybersecurity – Attack and Defense Strategies: Improve your security posture to mitigate risks and prevent attackers from infiltrating your system, 3rd Edition PDF
Cybersecurity – Attack and Defense Strategies: Improve your security posture to mitigate risks and prevent attackers from infiltrating your system, 3rd Edition
Yuri Diogenes
Cyber Security

Other Authors' Books

Other Publishing Books

Hack the Cybersecurity Interview: A complete interview preparation guide for jumpstarting your cybersecurity career PDF
Hack the Cybersecurity Interview: A complete interview preparation guide for jumpstarting your cybersecurity career
Tia Hopkins
Coding Interview
Solar System (DKfindout!) PDF
Solar System (DKfindout!)
Sarah Cruddas
Solar Energy
Learn Kubernetes & Docker - .NET Core, Java, Node.JS, PHP or Python: Be ready to create and run your containerized and orchestrated application next week. (Learn Collection) PDF
Learn Kubernetes & Docker - .NET Core, Java, Node.JS, PHP or Python: Be ready to create and run your containerized and orchestrated application next week. (Learn Collection)
Arnaud Weil
PHP
Jupyter Notebook 101 PDF
Jupyter Notebook 101
Michael Driscoll
Software Development
Simplifying Regular Expression Using Python: #Awarded as One of the Best Book in 2020 and 2021 by bookauthority.org PDF
Simplifying Regular Expression Using Python: #Awarded as One of the Best Book in 2020 and 2021 by bookauthority.org
Abhishek Singh
Python
Bitcoin Trading for Beginners, Dummies & Idiots PDF
Bitcoin Trading for Beginners, Dummies & Idiots
Giovanni Rigters
Bitcoin
Selenium WebDriver Recipes in Node.js: The problem solving guide to Selenium WebDriver in JavaScript (Test Recipes Series Book 6) PDF
Selenium WebDriver Recipes in Node.js: The problem solving guide to Selenium WebDriver in JavaScript (Test Recipes Series Book 6)
Zhimin Zhan
Software Testing
Advancing Technology Industrialization Through Intelligent Software Methodologies, Tools and Techniques: Proceedings of the 18th International ... Intelligence and Applications, 318) PDF
Advancing Technology Industrialization Through Intelligent Software Methodologies, Tools and Techniques: Proceedings of the 18th International ... Intelligence and Applications, 318)
Hamido Fujita
Artificial Intelligence
Global Cybercrime and Cybersecurity Laws and Regulations: Issues and Challenges in the 21st Century PDF
Global Cybercrime and Cybersecurity Laws and Regulations: Issues and Challenges in the 21st Century
Shahid M. Shahidullah
Cyber Security
Evaluation of Some SMS Verification Services and Virtual Credit Cards Services for Online Accounts Verifications PDF
Evaluation of Some SMS Verification Services and Virtual Credit Cards Services for Online Accounts Verifications
Dr. Hidaia Mahmood Alassouli
API
From Voices to Results - Voice of Customer Questions, Tools and Analysis: Proven techniques for understanding and engaging with your customers PDF
From Voices to Results - Voice of Customer Questions, Tools and Analysis: Proven techniques for understanding and engaging with your customers
Robert Coppenhaver
Customer Journey Mapping
Redis 4.x Cookbook: Over 80 hand-picked recipes for effective Redis development and administration PDF
Redis 4.x Cookbook: Over 80 hand-picked recipes for effective Redis development and administration
Pengcheng Huang
Database Management
User Reviews
Rating
0
0
0
0
0
average 0
Total votes0