SANS ISC

[SANS ISC Diary] IOC’s: Risks of False Positive Alerts Flood Ahead

MISP, SANS Internet Storm Center 3 comments

I published the following diary on isc.sans.org: “IOC’s: Risks of False Positive Alerts Flood Ahead“.

Yesterday, I wrote a blog post which explained how to interconnect a Cuckoo sandbox and the MISP sharing platform. MISP has a nice REST API that allows you to extract useful IOC’s in different formats. One of them is the Suricata / Snort format. Example… [Read more]

3 comments

  1. Pingback: [SANS ISC Diary] IOC’s: Risks of False Positive Alerts Flood Ahead – Insuring Your Future… Today.
  2. Pingback: [SANS ISC Diary] IOC’s: Risks of False Positive Alerts Flood Ahead – sec.uno
  3. Pingback: [SANS ISC Diary] IOC’s: Risks of False Positive Alerts Flood Ahead – Cyber Security

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.