This talk will explore the Suricata rule syntax and use interesting parts of network traffic to highlight how to create custom rules. We will also explore keywords, where to find resources and how to avoid false positives.
Speaker – Tatyana Shishkova
Tatyana is a Senior Malware Analyst specializing in reverse engineering (currently Android platform, previously Windows), threat intelligence and network intrusion detection (Suricata). She speaks at cybersecurity conferences, teach newbies and conduct webinars. She has a Specialist’s degree in Applied Mathematics and Computer Science from Lomonosov Moscow State University.