OverWatch threat hunting is carried out with the clear purpose of “finding threats that cannot be discovered by technology alone.” For the first time, this report reveals the techniques used by the human-led search engine Falcon OverWatch. The OverWatch team employs a hunting technique called “SEARCH” to perform large-scale threat detection 24 hours a day. OverWatch threat hunters use SEARCH’s methods to systematically screen Unknown Unknows (what we don’t know or understand) to find even the smallest traces of malicious activity and put it to practical use.

To learn more please download this whitepaper.

To Download Please Provide the Following