So Many Ducks, So Little Time - SANS Threat Hunting Summit 2017 : SANS Digital Forensics and Incident Response

Threat hunting is time consuming , costly and highly specialized. " The authors of this talk aim to completely contradict this statement and show you that you can start threat hunting with minimal time investment by leveraging free tools and clever techniques. While the need for proactive threat identification is getting traction within the security industry , many still see this as something that can only be achieved by investing in intelligent (and expensive) threat hunting software. Starting with baselining a subset of the systems in your environment and automating analysis through scripting