Name: Threat Hunting in Practice: Investigating Real-World Intrusions with Hands-On Labs
Start: 2026-05-31T09:00:00-0700
End: 2026-05-31T13:00:00-0700

Threat Hunting in Practice: Investigating Real-World Intrusions with Hands-On Labs

Sunday May 31, 2026 9:00am - 1:00pm PDT

Room 2200

This hands-on workshop delivers a practical introduction into Threat Hunting, Detection Engineering and Incident Response through Threat Hunting Labs. Participants will investigate real-world intrusions in interactive, production-lookalike environments using authentic forensic artifacts such as system logs, network traffic, and memory data.

Using SIEM platforms including Elasticsearch and Splunk, attendees will develop practical skills in identifying adversary techniques, reconstructing attack timelines, and investigating incidents using structured, repeatable methodologies. The session combines guided walk throughs with independent analysis, making it suitable for both newcomers and experienced information security professionals.

By the end of the workshop, participants will have hands-on experience hunting threats, analyzing forensic telemetry, and responding to incidents using real-world tradecraft.

Technical Requirements:
• Participants must bring a laptop capable of running a modern web browser.

Speakers

Kostas T.

Founder, DefendPoint Consulting

Kostas is an information security researcher and consultant with over 10 years of experience in threat hunting, incident response, and intrusion analysis. He specializes in analyzing real-world attacks end to end, with a strong focus on endpoint telemetry, visibility gaps, and evidence-based... Read More →

Sunday May 31, 2026 9:00am - 1:00pm PDT
Room 2200 515 W Hastings St, Vancouver, BC V6B 5K3, Canada

Workshop

BSides Vancouver 2026

Kostas T.

Get help with the event