Host: Brian Carrier, CEO of Sleuth Kit Labs
Topic: EDR, DFIR and Endpoint Triage
We’ll explore how SOCs can effectively investigate endpoints after alerts to decide whether to wipe it or call an IR team. Brian will cover leveraging EDR data and additional forensic artifacts for better Endpoint Triage, helping teams cut through the overwhelming amount of information to make informed response decisions.
Register for the series: Defender Fridays | LimaCharlie