SANS Stormcast Friday Feb 21st: Kibana Queries; Mongoose Injection; U-Boot Flaws; Unifi Protect Camera Vulnerabilities; Protecting Network Devices as Endpoint (Austin Clark @sans_edu)
SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)
Enhancing Network Device Security through Sigma Rules
This chapter covers the ingestion of syslog data from Cisco and other network devices, utilizing Sigma rules for detection in SIEM systems. It emphasizes the importance of tuning detections for adaptability and discusses advancements in the MITRE network enterprise matrix for identifying network vulnerabilities.
00:00
Transcript
Play full episode
Remember Everything You Learn from Podcasts
Save insights instantly, chat with episodes, and build lasting knowledge - all powered by AI.
