There are many paths in a security career. Some are on offense, some are on defense. Some are new, others are old. Threat hunting is a newer discipline in security and can shine a light on unseen adversary activity. It is challenging and may require us to develop totally new skills. If you want to start threat hunting or change your job to be a threat hunter, what steps do you take? How can you learn the skills needed to turn adversaries into your prey?
There’s a lot to learn, so let’s start with the skills you need to develop and how to practice them. First, we take a look at a simple lab you can build, where the data you need is generated, and how to get that data. Next let’s pick some techniques to focus on, create some attacks and execute them. Finally, we look at what these attacks look like in the data and see if we can find them. With these basics in place, we can expand to other techniques and continue to practice.