Uplevelling Black Hat Threat Hunters
Once you ingest major telemetry sources, how can we add value for our Threat Hunters? Check out how we brought in potentially malicious sandbox submissions to the analysts’ queue for triage.
Once you ingest major telemetry sources, how can we add value for our Threat Hunters? Check out how we brought in potentially malicious sandbox submissions to the analysts’ queue for triage.
At Black Hat Asia, we tested a private AI SOC workflow built with Ollama, NVIDIA GPU acceleration, Open WebUI, OpenClaw, DefenseClaw, Cisco AI Defense and MCP integrations, with Splunk audit visibility.
Cisco Secure Access provides the DNS resolution and security at Black Hat Asia.
Learn about how the engineers solved the challenge of integrating Palo Alto XSIAM into Cisco XDR for providing more context to our Threat Hunters.
Working with multiple vendors in a collaborative environment to better protect Black Hat.
Read on for the interesting findings our Threat Hunters share. This is about specific needles in the stack of needles at Black Hat.
Cisco is the Security Cloud Provider for the Black Hat conferences. Learn about the latest innovations for the SOC of the Future, our 10th year protecting Black Hat Asia.
Explore how VoidLink, a malware framework, targets Kubernetes and AI workloads. Discover why kernel-level runtime security is the new frontline.
Investigating indicators of compromise (IOCs) requires a unified view of security data. See how we integrated Cisco XDR with third-party tools and open-source models at Black Hat Europe.