Join us for our upcoming meetup. We'll be at the Elastic offices in Phoenix. The office can be a bit tricky to find, the building is on the south-facing side, up the stairs (on the outside), take a left, we’re 3 steps down. :)
We'll have one presentation + demo for the night. Food & beverages will also be provided.
Beholder, setting-up an instance of Bro/Elastic Stack
In this presentation, Jason will talk about the following bootstrap script he created, https://github.com/bechtelcirt/beholder, which sets up an instance of bro/Elastic Stack and makes it easy to jump right into analyzing your network traffic. He'll also talk about some projects he's exploring with automated host artifact parsing using SIFT with analysis via Kibana.
Jason Azzarella currently works as part of an incident response team at Bechtel in Glendale. He has worked in the security field for roughly five years and has a primary focus on host forensics. Outside work, he spends his time learning, mentoring, developing, following the fighting game community and playing World of Warcraft. Now didn’t the previous sentence start off so promising and end in sheer disappointment?