Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Application Intrusion Detection

Application Intrusion Detection

Kim Carter

July 03, 2021

More Decks by Kim Carter

Other Decks in Technology


  1. COMMUNITY TOPICS Welcome InfoSecNZ Slack, OWASP Slack Anything else people

    want to mention? Tonights talk (Chris - Incident Response), (Me - Application Intrusion Detection) 
  2. 1. Asset Identification 2. Identify Risks 3. Countermeasures 4. Risks

    that Solution Causes 5. Costs and Trade-offs 
  3. Lack of Visibility Insufficient Logging (->) & Monitoring (<-) Covered

    in for OWASP Top 10 Insufficient Attack Protection Book -> Holistic Info-Sec for Web Developers No. 10 Lack of Active Automated Prevention 
  4. Lack of Visibility ... Detection works where prevention fails and

    detection is of no use without response Bruce Schneier 
  5. It's been 8 years now in alpha and releases being

    published regularly purpleteam It's time to let someone else take over Pete Nicholls is taking over from me Next Meetup Last Wed of Sep - Pete & Toni - Ask anything panel 