September - 2017

What does it really take to bring threat hunting to your organization?

For as long as I can remember, I've loved to find ways to create order and simplicity. Happy Threat Hunting allows me to ideate on operationalizing blue teams, and I love having the chance to share my passions with the infosec community. Explore my musings, and enjoy.

Tags

No tags yet.

Hunting Analytic Catalog | Playbook | Database

In my first post I went over some threat hunting models. For the R&D hunts, I mentioned that it would require every hunt to be cataloged. Then I started to try to create the outcome document from an R&D Hunt to share it with everyone and ran into a terminology roadblock of my own making. I couldn't seem to make progress on outlining the expected outcome from R&D Hunts, at least not in a concise way that would be easy for my team and my leadership to comprehend. So, I decided

HAPPY THREAT HUNTING

Musings on building a kickass threat hunting program

What does it really take to bring threat hunting to your organization?