CAPESstack is a service hub for incident response, intelligence analysis, and hunt operations which uses the Elastic Stack. It is designed to make life easier for SOCs, CSIRTs, CERTs and any information security practitioner dealing with security incidents that need to be investigated and acted upon swiftly.
Join Andy Pease, principal security research engineer at Elastic and cyber operations technician with MOCYBER, as he demonstrates the capabilities of CAPES and the Elastic Stack to carry out threat hunting activities essential for keeping pace with the threats of today and tomorrow. You’ll learn how CAPES delivers all the tools needed to help team members communicate and run cyber analytics and examinations, including incident response, intelligence analysis, and hunt operations. This session will end with a live Q&A.
Principal Security Research Engineer at Elastic and Cyber Operations Technician with MOCYBER
Andrew Pease is a Principal Security Research Engineer at Elastic. His team focuses on analyzing strategic, operational, and tactical threats. Andrew specializes in cyber threat hunting, economic espionage, campaign analysis, intelligence operations, and counter-intelligence programs.
Prior to his current role, Andrew was a co-founder and Chief Executive Officer of Perched, a security consulting company that joined forces with Elastic in August of 2019.
Additionally, Andrew is the Hunt Lead for the Missouri Cyber Team within the Missouri National Guard. His team has developed techniques and methodologies for performing cyber hunting operations within Federal, State, and private sector entities.
Andrew is a contributor to the open-source hunting platform, RockNSM (rocknsm.io), the project owner of the open-source operations technology stack, CAPES (capesstack.io), and the creator of Hunt Ops (huntops.blue), a blog focused on leveraging the Elastic Stack w/open source tools to hunt for malicious network activity.