-
Hi Dylan,
I read your blog post regarding Practical Temporal Proximity in KQL and it was very interesting, and while I am no SOC expert, do you know if similar concept can be applied to MSFT Defend…
-
Because the Ubuntu 14.04 server with a desktop environment failed, this alternative needs to be explored.
-
First of all I would like to say thank you to all the contributors of volatility. This has by far been a fun experience diving into forensics for me!
I have a more of a question then an explicit is…
-
### The title of the playbook
Create a MISP event on a malware incident – without sample
### Purpose of the playbook
This playbook is similar to the paybook on a malware incident with a sampl…
-
**Is your feature request related to a problem? Please describe.**
Currently, `iris-web` does not work properly when used with a subpath (ex. `/iris`) behind a proxy like nginx.
**Describe the sol…
-
少时常看一兄灰鸽子种马,QQ钓鱼等。2013年拥有自己电脑,11月左右寻找各种工具包,后常深夜修仙,依旧苦苦无果。又因诸事繁杂,时有断续,却未敢停歇。自2016.11月起则…
-
### The title of the playbook
Query URL reputation
### Purpose of the playbook
This playbook is similar to the domain reputation playbook (https://github.com/MISP/misp-playbooks/issues/13) , includ…
-
The CI tests use "configure --disable-static" but option does not exist e.g. https://github.com/sleuthkit/sleuthkit/blob/develop/.github/workflows/build-unix.yml#L56
and
```
./configure --help …
-
**Describe the bug**
docker-compose build fails due to error installing splunk-hec
**To Reproduce**
Steps to reproduce the behavior:
1. Free Ubuntu install with Docker from get.docker.com
2. Fo…
-
Great work here. Would there be a way to add the value of the respective transactions into the arrows on the diagram? Similar to here:
Would be a huge feature and skip a step between re-referenci…