Webinar – Suricata Metadata Analysis and Threat Hunting with CrystalEye XDR
May 25 @ 10:00 am - 11:00 am EDT
Suricata has the ability to output alerts, anomalies, metadata, file info and protocol-specific records through JSON EVE output. In this webinar, we’ll explore how we can use Suricata event data for threat detection and prevention by enriching, processing and logging EVE JSON output to MongoDB in real-time. We will also analyze threat hunting reports with correlation of Suricata metadata and hunt through traffic with CrystalEye XDR.
Vagisha is a security software engineer working with Red Piranha developing advanced security products like IDPS rule management system, network mapping tools and threat hunt reports. In the past, she has been an Outreachy intern with OISF where she worked on suricata-update. A postgraduate in data analytics, she also published a couple of research papers including one in IEEE journal. Vagisha has a growing interest in InfoSec, data driven programming and malware traffic analysis.