David Bianco

David is a member of Splunk's SURGe team, where he conducts research in incident detection and response, threat hunting, and Cyber Threat Intelligence (CTI). He is also a SANS Certified Instructor, where he teaches FOR572 Network Forensics and Threat Hunting.

CISO Circle 5 Min Read

Build or Buy? Deciding the Best Path for Your Next AI Cybersecurity Tool

How to weigh the true costs of building or buying your AI solution

Security 4 Min Read

Introducing DECEIVE: A Proof-of-Concept Honeypot Powered by AI

Explore DECEIVE: an AI-powered proof-of-concept honeypot by SURGe. Learn how AI simplifies cybersecurity with dynamic simulations and session summaries, paving the way for innovative security solutions.

Security 6 Min Read

Matching AI Strengths to Blue Team Needs

Discover how AI and Large Language Models (LLMs) enhance cybersecurity operations for Blue Teams.

Learn 8 Min Read

What Is Threat Hunting?

The goal of threat hunting is NOT to find more security incidents — it’s to drive continuous improvement across your entire security program. Learn more here.

Security 11 Min Read

Hypothesis-Driven Cryptominer Hunting with PEAK

A sample hypothesis-driven hunt, using SURGe's PEAK threat hunting framework, looking for unauthorized cryptominers.

CISO Circle 3 Min Read

The “Why” of Threat Hunting Has Changed

When hunting emerged, most organizations used it to discover incidents that their automated detection systems missed. However, as hunting has matured, we’ve come to realize that its impact goes far beyond just finding security incidents.