File analysis at scale remains a major challenge for cybersecurity teams, often leading to alert fatigue and missed threats. In this talk, we'll dig into Strelka - an open-source, detection-oriented file analysis tool developed at Target. We'll highlight how Strelka is capable of characterizing hundreds of millions of files daily, providing scalable detection potential across your enterprise.
By attending this session, you'll learn strategies to effectively leverage Strelka's scanning capabilities aimed at enhancing file analysis workflows and threat detection abilities. We'll demonstrate practical use cases showcasing how Strelka integrates into modern security stacks, serving as a critical pillar for responding to emerging cyber threats.
SANS DFIR Summit 2024
Cutting Through the Chaos: File Detection and Analysis Using Strelka
Speaker: Paul Hutelmyer, Principal Engineer, Target Corporation
View upcoming Summits: www.sans.org/u/DuS
1 окт 2024
