This session will acquaint the attendees with the basics of building a network metadata collection and analysis infrastructure using the open source CERT NetSA Security Suite. The talk will cover workflows for analyzing security metadata using portions of the SciPy tool suite, Graphlab, and Apache Spark. Some best practice analytical workflows will also be covered for characterization and categorization of internal network infrastructure for the purpose of behavioral modeling.
