WEBCAST: Tales from the Network Threat Hunting Trenches

John Strand//

In this webcast, John walks through a couple of cool things we’ve found useful in some recent network hunt teams. He also shares some of our techniques and tools (like RITA) that we use all the time to work through massive amounts of data. There are lots of awesome websites that can greatly increase the effectiveness of your in-network threat hunting.

For those interested, after the webcast, we show off our new commercial threat hunting tool, AI Hunter. We are currently looking for Beta testers who have span ports ready to fire and possibly are already using Bro.

The demo is after the hour of free tools and techniques. Free stuff, intermission, then the demo. We won’t spam you afterward about the product, promise.

Slides can be found here:


Want to level up your skills and learn more straight from John himself?
You can check out his classes below!

SOC Core Skills

Active Defense & Cyber Deception

Getting Started in Security with BHIS and MITRE ATT&CK

Introduction to Pentesting

Available live/virtual and on-demand