Sysmon Security Event Processing in Real Time with KSQL and HELK
Confluent
FEBRUARY 21, 2019
Roberto Rodriguez is a senior threat hunter and researcher at SpecterOps, where he specializes in the development of data analytics to detect advanced adversarial techniques. He is also the author of several open source projects, such as the Threat Hunter Playbook and HELK. . Real-Time Sysmon Processing via KSQL and HELK?—?Part
Let's personalize your content