Dorothy is a tool to help security teams test their monitoring and detection capabilities for their Okta environment. Dorothy has several modules to simulate actions that an attacker might take while operating in an Okta environment and actions that security teams should be able to audit. The modules are mapped to the relevant MITRE ATT&CK tactics, such as persistence, defense evasion, and discovery.
Reference Material:
Slides: https://docs.google.com/presentation/...
Blog Post: Testing your Okta visibility and detection with Dorothy and Elastic Security (https://www.elastic.co/blog/testing-o...)
Thank you to our speaker David French.
Be sure to join your local and virtual Elastic User Group to stay up-to-date on upcoming meetups: https://community.elastic.co/
Questions? Check out https://discuss.elastic.co/
Connect with the Elastic community through Slack: https://ela.st/slack
Official Elastic Community
コメント