Siirry offline-tilaan Player FM avulla!
Grapl: Graph-Based Detection and Response with Colin O’Brien
Arkistoidut sarjat ("Toimeton syöte" status)
When? This feed was archived on July 28, 2022 13:09 (). Last successful fetch was on April 07, 2022 07:18 ()
Why? Toimeton syöte status. Palvelimemme eivät voineet hakea voimassa olevaa podcast-syötettä tietyltä ajanjaksolta.
What now? You might be able to find a more up-to-date version using the search function. This series will no longer be checked for updates. If you believe this to be in error, please check if the publisher's feed link below is valid and contact support to request the feed be restored or if you have any other concerns about this.
Manage episode 261714575 series 1438211
A large software company such as Dropbox is at a constant risk of security breaches. These security breaches can take the form of social engineering attacks, network breaches, and other malicious adversarial behavior. This behavior can be surfaced by analyzing collections of log data.
Log-based threat response is not a new technique. But how should those logs be analyzed? Grapl is a system for modeling log data as a graph, and analyzing that graph for threats based on how nodes in the graph have interacted. By building a graph from log data, Grapl can classify interaction patterns that correspond to threats.
Colin O’Brien is the creator of Grapl, and he joins the show to discuss security, as well as threat detection and response.
Sponsorship inquiries: sponsor@softwareengineeringdaily.com
The post Grapl: Graph-Based Detection and Response with Colin O’Brien appeared first on Software Engineering Daily.
73 jaksoa
Arkistoidut sarjat ("Toimeton syöte" status)
When? This feed was archived on July 28, 2022 13:09 (). Last successful fetch was on April 07, 2022 07:18 ()
Why? Toimeton syöte status. Palvelimemme eivät voineet hakea voimassa olevaa podcast-syötettä tietyltä ajanjaksolta.
What now? You might be able to find a more up-to-date version using the search function. This series will no longer be checked for updates. If you believe this to be in error, please check if the publisher's feed link below is valid and contact support to request the feed be restored or if you have any other concerns about this.
Manage episode 261714575 series 1438211
A large software company such as Dropbox is at a constant risk of security breaches. These security breaches can take the form of social engineering attacks, network breaches, and other malicious adversarial behavior. This behavior can be surfaced by analyzing collections of log data.
Log-based threat response is not a new technique. But how should those logs be analyzed? Grapl is a system for modeling log data as a graph, and analyzing that graph for threats based on how nodes in the graph have interacted. By building a graph from log data, Grapl can classify interaction patterns that correspond to threats.
Colin O’Brien is the creator of Grapl, and he joins the show to discuss security, as well as threat detection and response.
Sponsorship inquiries: sponsor@softwareengineeringdaily.com
The post Grapl: Graph-Based Detection and Response with Colin O’Brien appeared first on Software Engineering Daily.
73 jaksoa
ทุกตอน
×Tervetuloa Player FM:n!
Player FM skannaa verkkoa löytääkseen korkealaatuisia podcasteja, joista voit nauttia juuri nyt. Se on paras podcast-sovellus ja toimii Androidilla, iPhonela, ja verkossa. Rekisteröidy sykronoidaksesi tilaukset laitteiden välillä.