Week 7 - Stop Waiting, Start Hunting

This week, we explored Threat Hunting, which fundamentally changes how I've thought of network security. Rather than waiting for alerts, threat hunting is the proactive process of searching through networks to detect threats that have already evaded existing security solutions.

We learned that the process typically revolves around a continuous loop that includes creating a specific hypothesis, investigating raw data, and uncovering hidden patterns. We also examined tactics like using data from known attacks and looking for behavioral anomalies. Ultimately, the goal isn't just to block attacks, but to actively seek them out.