The cyber threat landscape is rapidly evolving, with adversaries employing sophisticated techniques to breach systems and bypass traditional defenses. In this landscape, understanding how attackers operate and proactively hunting for signs of compromise is more critical than ever.

This webinar presents a structured approach to threat hunting using endpoint telemetry, specifically Sysmon logs, which offer deep visibility into process behavior, network activity, registry changes, image loads, and more. You’ll be introduced to Garuda, an open-source threat hunting framework designed to triage and analyze Sysmon data efficiently. Garuda enables defenders to detect adversary techniques by correlating events, reducing noise, and presenting contextualized attack paths.

We’ll showcase how Garuda can uncover complex attack chains, investigate real-world incidents, and map events to the MITRE ATT&CK framework for technique-level visibility. Additionally, we’ll share how structured data extracted from Garuda can power AI-based threat-hunting solutions, enabling intelligent detection of subtle, stealthy threats. Whether you're a threat hunter, SOC analyst, or incident responder, this session will equip you with the tools, workflows, and forward-looking insights to operationalize endpoint telemetry for both manual and AI-driven threat detection.

Register Now!