WHAT IS THREAT HUNTING?
Cyber Threat Hunting is the process of proactively searching through networks to detect and isolate advanced threats that have infiltrated your networks by evading existing security solutions. Unlike traditional threat management measures, such as firewalls, intrusion detection systems (IDS), malware sandbox (computer security) and SIEM systems, which typically involve an investigation after there has been a warning of a potential threat or an incident has occurred – Threat Hunters actively hunt for undetected threats that may have penetrated your systems.
Threat hunting technology and processes can work with existing security infrastructure to deny attackers the ability to persist undetected. Once discovered, these threats can be quarantined and eliminated before they cause any harm, or, if the damage has already begun, the scope of the event can be limited and contained.