cyberwar & splunk demonstrationsplunk> core certified user e 6) a https// samsclass. nfo...
TRANSCRIPT
![Page 1: Cyberwar & Splunk Demonstrationsplunk> CORE CERTIFIED USER e 6) a https// samsclass. nfo 150/oroi/ourale-bots.htm Purple Team 4: Threat Hunting with Splunk (325 pts) Scores from Pacific](https://reader034.vdocuments.us/reader034/viewer/2022042221/5ec7e7829b761d7a4112addd/html5/thumbnails/1.jpg)
Cyberwar & Splunk Demonstration
Sam Bowne
![Page 2: Cyberwar & Splunk Demonstrationsplunk> CORE CERTIFIED USER e 6) a https// samsclass. nfo 150/oroi/ourale-bots.htm Purple Team 4: Threat Hunting with Splunk (325 pts) Scores from Pacific](https://reader034.vdocuments.us/reader034/viewer/2022042221/5ec7e7829b761d7a4112addd/html5/thumbnails/2.jpg)
![Page 3: Cyberwar & Splunk Demonstrationsplunk> CORE CERTIFIED USER e 6) a https// samsclass. nfo 150/oroi/ourale-bots.htm Purple Team 4: Threat Hunting with Splunk (325 pts) Scores from Pacific](https://reader034.vdocuments.us/reader034/viewer/2022042221/5ec7e7829b761d7a4112addd/html5/thumbnails/3.jpg)
![Page 4: Cyberwar & Splunk Demonstrationsplunk> CORE CERTIFIED USER e 6) a https// samsclass. nfo 150/oroi/ourale-bots.htm Purple Team 4: Threat Hunting with Splunk (325 pts) Scores from Pacific](https://reader034.vdocuments.us/reader034/viewer/2022042221/5ec7e7829b761d7a4112addd/html5/thumbnails/4.jpg)
![Page 5: Cyberwar & Splunk Demonstrationsplunk> CORE CERTIFIED USER e 6) a https// samsclass. nfo 150/oroi/ourale-bots.htm Purple Team 4: Threat Hunting with Splunk (325 pts) Scores from Pacific](https://reader034.vdocuments.us/reader034/viewer/2022042221/5ec7e7829b761d7a4112addd/html5/thumbnails/5.jpg)
• https://www.rfa.org/english/news/china/hacking-02222013121848.html
![Page 6: Cyberwar & Splunk Demonstrationsplunk> CORE CERTIFIED USER e 6) a https// samsclass. nfo 150/oroi/ourale-bots.htm Purple Team 4: Threat Hunting with Splunk (325 pts) Scores from Pacific](https://reader034.vdocuments.us/reader034/viewer/2022042221/5ec7e7829b761d7a4112addd/html5/thumbnails/6.jpg)
Kill Chain
![Page 7: Cyberwar & Splunk Demonstrationsplunk> CORE CERTIFIED USER e 6) a https// samsclass. nfo 150/oroi/ourale-bots.htm Purple Team 4: Threat Hunting with Splunk (325 pts) Scores from Pacific](https://reader034.vdocuments.us/reader034/viewer/2022042221/5ec7e7829b761d7a4112addd/html5/thumbnails/7.jpg)
![Page 8: Cyberwar & Splunk Demonstrationsplunk> CORE CERTIFIED USER e 6) a https// samsclass. nfo 150/oroi/ourale-bots.htm Purple Team 4: Threat Hunting with Splunk (325 pts) Scores from Pacific](https://reader034.vdocuments.us/reader034/viewer/2022042221/5ec7e7829b761d7a4112addd/html5/thumbnails/8.jpg)
https://www.businessinsider.com/fbi-aristedes-mahairas-these-4-nations-pose-biggest-cyber-risk-to-us-2018-6
![Page 9: Cyberwar & Splunk Demonstrationsplunk> CORE CERTIFIED USER e 6) a https// samsclass. nfo 150/oroi/ourale-bots.htm Purple Team 4: Threat Hunting with Splunk (325 pts) Scores from Pacific](https://reader034.vdocuments.us/reader034/viewer/2022042221/5ec7e7829b761d7a4112addd/html5/thumbnails/9.jpg)
• https://graquantum.com/a-brief-history-of-cyberwarfare/
A Brief History of Cyberwarfare
![Page 10: Cyberwar & Splunk Demonstrationsplunk> CORE CERTIFIED USER e 6) a https// samsclass. nfo 150/oroi/ourale-bots.htm Purple Team 4: Threat Hunting with Splunk (325 pts) Scores from Pacific](https://reader034.vdocuments.us/reader034/viewer/2022042221/5ec7e7829b761d7a4112addd/html5/thumbnails/10.jpg)
Scorecard
• https://warontherocks.com/2017/07/cyber-attacks-whos-keeping-score/
![Page 11: Cyberwar & Splunk Demonstrationsplunk> CORE CERTIFIED USER e 6) a https// samsclass. nfo 150/oroi/ourale-bots.htm Purple Team 4: Threat Hunting with Splunk (325 pts) Scores from Pacific](https://reader034.vdocuments.us/reader034/viewer/2022042221/5ec7e7829b761d7a4112addd/html5/thumbnails/11.jpg)
Scorecard
• https://warontherocks.com/2017/07/cyber-attacks-whos-keeping-score/
![Page 12: Cyberwar & Splunk Demonstrationsplunk> CORE CERTIFIED USER e 6) a https// samsclass. nfo 150/oroi/ourale-bots.htm Purple Team 4: Threat Hunting with Splunk (325 pts) Scores from Pacific](https://reader034.vdocuments.us/reader034/viewer/2022042221/5ec7e7829b761d7a4112addd/html5/thumbnails/12.jpg)
Chinese Attacks
https://www.belfercenter.org
![Page 13: Cyberwar & Splunk Demonstrationsplunk> CORE CERTIFIED USER e 6) a https// samsclass. nfo 150/oroi/ourale-bots.htm Purple Team 4: Threat Hunting with Splunk (325 pts) Scores from Pacific](https://reader034.vdocuments.us/reader034/viewer/2022042221/5ec7e7829b761d7a4112addd/html5/thumbnails/13.jpg)
![Page 14: Cyberwar & Splunk Demonstrationsplunk> CORE CERTIFIED USER e 6) a https// samsclass. nfo 150/oroi/ourale-bots.htm Purple Team 4: Threat Hunting with Splunk (325 pts) Scores from Pacific](https://reader034.vdocuments.us/reader034/viewer/2022042221/5ec7e7829b761d7a4112addd/html5/thumbnails/14.jpg)
Russian Cyberattacks
![Page 15: Cyberwar & Splunk Demonstrationsplunk> CORE CERTIFIED USER e 6) a https// samsclass. nfo 150/oroi/ourale-bots.htm Purple Team 4: Threat Hunting with Splunk (325 pts) Scores from Pacific](https://reader034.vdocuments.us/reader034/viewer/2022042221/5ec7e7829b761d7a4112addd/html5/thumbnails/15.jpg)
Iranian Attacks
https://www.recordedfuture.com
![Page 16: Cyberwar & Splunk Demonstrationsplunk> CORE CERTIFIED USER e 6) a https// samsclass. nfo 150/oroi/ourale-bots.htm Purple Team 4: Threat Hunting with Splunk (325 pts) Scores from Pacific](https://reader034.vdocuments.us/reader034/viewer/2022042221/5ec7e7829b761d7a4112addd/html5/thumbnails/16.jpg)
![Page 17: Cyberwar & Splunk Demonstrationsplunk> CORE CERTIFIED USER e 6) a https// samsclass. nfo 150/oroi/ourale-bots.htm Purple Team 4: Threat Hunting with Splunk (325 pts) Scores from Pacific](https://reader034.vdocuments.us/reader034/viewer/2022042221/5ec7e7829b761d7a4112addd/html5/thumbnails/17.jpg)
![Page 18: Cyberwar & Splunk Demonstrationsplunk> CORE CERTIFIED USER e 6) a https// samsclass. nfo 150/oroi/ourale-bots.htm Purple Team 4: Threat Hunting with Splunk (325 pts) Scores from Pacific](https://reader034.vdocuments.us/reader034/viewer/2022042221/5ec7e7829b761d7a4112addd/html5/thumbnails/18.jpg)
![Page 19: Cyberwar & Splunk Demonstrationsplunk> CORE CERTIFIED USER e 6) a https// samsclass. nfo 150/oroi/ourale-bots.htm Purple Team 4: Threat Hunting with Splunk (325 pts) Scores from Pacific](https://reader034.vdocuments.us/reader034/viewer/2022042221/5ec7e7829b761d7a4112addd/html5/thumbnails/19.jpg)
Russian Attacks
2006: Litvineko poisioned in London with Polonium-210
2007: Cyberattack on Estonia
2008: Invasion of Georgia
2016: Cyberattacks to influence US election
2018: Skripal poisioned with Novichok nerve agent in Salisbury, England
![Page 20: Cyberwar & Splunk Demonstrationsplunk> CORE CERTIFIED USER e 6) a https// samsclass. nfo 150/oroi/ourale-bots.htm Purple Team 4: Threat Hunting with Splunk (325 pts) Scores from Pacific](https://reader034.vdocuments.us/reader034/viewer/2022042221/5ec7e7829b761d7a4112addd/html5/thumbnails/20.jpg)
![Page 21: Cyberwar & Splunk Demonstrationsplunk> CORE CERTIFIED USER e 6) a https// samsclass. nfo 150/oroi/ourale-bots.htm Purple Team 4: Threat Hunting with Splunk (325 pts) Scores from Pacific](https://reader034.vdocuments.us/reader034/viewer/2022042221/5ec7e7829b761d7a4112addd/html5/thumbnails/21.jpg)
![Page 22: Cyberwar & Splunk Demonstrationsplunk> CORE CERTIFIED USER e 6) a https// samsclass. nfo 150/oroi/ourale-bots.htm Purple Team 4: Threat Hunting with Splunk (325 pts) Scores from Pacific](https://reader034.vdocuments.us/reader034/viewer/2022042221/5ec7e7829b761d7a4112addd/html5/thumbnails/22.jpg)
![Page 23: Cyberwar & Splunk Demonstrationsplunk> CORE CERTIFIED USER e 6) a https// samsclass. nfo 150/oroi/ourale-bots.htm Purple Team 4: Threat Hunting with Splunk (325 pts) Scores from Pacific](https://reader034.vdocuments.us/reader034/viewer/2022042221/5ec7e7829b761d7a4112addd/html5/thumbnails/23.jpg)
US Attack Tools
![Page 24: Cyberwar & Splunk Demonstrationsplunk> CORE CERTIFIED USER e 6) a https// samsclass. nfo 150/oroi/ourale-bots.htm Purple Team 4: Threat Hunting with Splunk (325 pts) Scores from Pacific](https://reader034.vdocuments.us/reader034/viewer/2022042221/5ec7e7829b761d7a4112addd/html5/thumbnails/24.jpg)
https://www.wired.com/2014/11/countdown-to-zero-day-stuxnet/
![Page 25: Cyberwar & Splunk Demonstrationsplunk> CORE CERTIFIED USER e 6) a https// samsclass. nfo 150/oroi/ourale-bots.htm Purple Team 4: Threat Hunting with Splunk (325 pts) Scores from Pacific](https://reader034.vdocuments.us/reader034/viewer/2022042221/5ec7e7829b761d7a4112addd/html5/thumbnails/25.jpg)
https://www2.cs.arizona.edu/~collberg/Teaching/466-566/2012/Resources/presentations/2012/topic9-final/report.pdf
![Page 26: Cyberwar & Splunk Demonstrationsplunk> CORE CERTIFIED USER e 6) a https// samsclass. nfo 150/oroi/ourale-bots.htm Purple Team 4: Threat Hunting with Splunk (325 pts) Scores from Pacific](https://reader034.vdocuments.us/reader034/viewer/2022042221/5ec7e7829b761d7a4112addd/html5/thumbnails/26.jpg)
![Page 27: Cyberwar & Splunk Demonstrationsplunk> CORE CERTIFIED USER e 6) a https// samsclass. nfo 150/oroi/ourale-bots.htm Purple Team 4: Threat Hunting with Splunk (325 pts) Scores from Pacific](https://reader034.vdocuments.us/reader034/viewer/2022042221/5ec7e7829b761d7a4112addd/html5/thumbnails/27.jpg)
![Page 28: Cyberwar & Splunk Demonstrationsplunk> CORE CERTIFIED USER e 6) a https// samsclass. nfo 150/oroi/ourale-bots.htm Purple Team 4: Threat Hunting with Splunk (325 pts) Scores from Pacific](https://reader034.vdocuments.us/reader034/viewer/2022042221/5ec7e7829b761d7a4112addd/html5/thumbnails/28.jpg)
![Page 29: Cyberwar & Splunk Demonstrationsplunk> CORE CERTIFIED USER e 6) a https// samsclass. nfo 150/oroi/ourale-bots.htm Purple Team 4: Threat Hunting with Splunk (325 pts) Scores from Pacific](https://reader034.vdocuments.us/reader034/viewer/2022042221/5ec7e7829b761d7a4112addd/html5/thumbnails/29.jpg)
![Page 30: Cyberwar & Splunk Demonstrationsplunk> CORE CERTIFIED USER e 6) a https// samsclass. nfo 150/oroi/ourale-bots.htm Purple Team 4: Threat Hunting with Splunk (325 pts) Scores from Pacific](https://reader034.vdocuments.us/reader034/viewer/2022042221/5ec7e7829b761d7a4112addd/html5/thumbnails/30.jpg)