Proactive Threat Hunting - SMB Outbound Connections, JA3 Unique Pairings

🔍 In this episode of the Hunt Club Podcast Short, Tiff (Senior Product Marketing Manager) sits down with Luke (Threat Intelligence Lead) from our Security Research team to break down two powerful Five-Minute Hunts that help security teams detect threats faster.

Learn why outbound SMB connections are still a major risk, how JA3 fingerprinting uncovers hidden devices and command-and-control activity, and how the Vectra AI Platform makes expert-level hunting accessible to every analyst.

⏱️ Chapters
0:00 Intro to Luke Richards, Threat Intelligence Lead at Vectra AI
01:10 Why Proactive Hunting Matters
01:45 What Are Five-Minute Hunts?
02:10 Hunt 1: Outbound SMB Connections
06:58 How to Investigate Suspicious SMB Activity
08:40 Hunt 2: JA3 Unique Pairings
11:30 Finding Unknown or Suspicious Devices
13:24 How AI-Assisted Search Extends Your Hunt

-- About Vectra AI --
Vectra AI, Inc. is the cybersecurity AI company that protects modern networks from modern attacks. When modern cyber attackers bypass existing controls, evade detection and gain access to customers’ data center, campus, remote work, identity, cloud, and IoT/OT environments, the Vectra AI Platform sees their every move, connects the dots in real-time, and stops them from becoming breaches. With 35 patents in AI security and the most vendor references in MITRE D3FEND, organizations worldwide rely on Vectra AI to see and stop attacks their other tools can’t. For more information, visit www.vectra.ai.