Neil R. Wyler (a.k.a. Grifter) is a Threat Hunting and Incident Response Specialist with RSA. He has spent over 19 years as a security professional, focusing on vulnerability assessment, penetration testing, physical security and incident response. He has been a staff member of the Black Hat Security Briefings for over 17 years and a member of the Senior Staff at DEF CON for 19 years. Wyler has spoken at numerous security conferences worldwide, including Black Hat, DEF CON and RSA Conference. He has been the subject of various online, print, film and television interviews, and has authored several books on information security. Wyler is a member of the DEF CON and Black Hat CFP review boards, the Black Hat Training Review Board, the founder of DC801 and founder of his local hackerspace, 801 Labs.
A lot has been said about threat hunting, by a lot of people. They’ll tell you how difficult it is, what products you should use, how to automate the pain away, and how you should’ve been doing this all along. But here’s the thing…you have been doing it all along. The concepts and techniques aren’t and shouldn’t be new. You know this stuff, and it doesn’t take a rocket surgeon to put some structure around it and develop a hunting program. So join us for some straight talk about what’s valuable, what isn’t, and where to focus when what you’re looking for is wrongdoers and results.