Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Microsoft 365 is a prime target for adversaries, with objectives ranging from credential harvesting to ransomware. However, managing detection rules can be a cumbersome task, especially as security analysts try to keep up with the ever-changing landscape of telemetry options from Microsoft.

We’ll look at one of LimaCharlie’s newest features: Binary Library, or “BinLib”, a private repository of binaries observed in an organization. BinLib opens up new opportunities for detecting malicious files within an organization. Historical searching and YARA scanning allow you to take your binary detection to the next level, as we will observe and discuss in this session.

LimaCharlie is the SecOps Cloud Platform that allows security teams of all shapes and sizes to build the program they need, while not having to worry about scale and infrastructure woes. As a platform that fosters creation, we also encourage our users to develop their own extensions, services, and capabilities. Priam Cyber AI has done just that with AVA, a platform geared towards measuring and improving your security operations.

A hosted panel discussion with industry leaders to explore what advantages the SecOps Cloud Platform confers for Managed Security Service Providers. The panel is moderated by LimaCharlie Co-founder, Christopher Luft. The panel participants are: Co-founder at Soteria, Paul Ihme Co-founder/CTO at Horangi Security, Lee Sult What is the SecOps Cloud Platform?

In this session, we look at how to best use LimaCharlie’s schedule driven detection & response rules. Schedule-driven events allow you to utilize D&R rules to help automate information collection and other organization-specific operations. They can also be critical to gathering health details from your organization, allowing for easy package enumeration or sensor health checks.

A hosted panel discussion with industry leaders to explore what advantages the SecOps Cloud Platform confers for ecosystem builders. The panel is moderated by LimaCharlie's Head of Product, Matt Bromiley. The panel participants are: Senior Security Researcher at Thinkst, Casey Smith Security Evangelist at RunZero, Huxley Barbee Head of Tines Labs, John Tuckner.

A hosted panel discussion with industry leaders to explore the advantages of the SecOps Cloud Platform for product builders. The panel is moderated by LimaCharlie's Head of Product, Ross Haleliuk. The panel participants are: Founder & CTO of Recon InfoSec, Eric Capuano Lead Incident Detection Engineer at Blumira, Amanda Berlin What is the SecOps Cloud Platform?

Binary Library, or “BinLib”, is a collection of data and metadata pertaining to executable binaries, such as EXE or ELF files, that have been observed within your organization(s). When enabled, this extension collects observed data into your own private collection of historical executables, then subsequently available for searching, tagging, and analysis. BinLib also features YARA scanning, allowing you to import rules and search across observed executables - all without impacting system resources or production systems.

On this episode of The Cybersecurity Defenders Podcast, we chat with John Hammond, Principal Security Researcher at Huntress, about security research.

LimaCharlie is inviting you to join us to change the way you view cybersecurity tools and how you manage security operations as you know it. By watching this video you will have the opportunity to learn how the SecOps Cloud Platform works—an environment where your key cybersecurity solutions can exist, not as a collection of random tools, but as a series of solutions designed to interoperate in an un-opinionated way.