-
We should consider adding the ability to capture one or more threat "scores" (or levels, etc.) as part of a TTP. While this would be arbitrary and highly contextually dependent, the ability to score t…
-
# Indicator Match rule can produce false positive alerts if you use AND conditions
### How to reproduce
1. create 2 indices
request
```
PUT test_event
{
"mappings": {
"pr…
-
i know false positives exist, but why ransomware? did all the antivirus companies came together and look at this program and say "hmm a windows xp key generator, that can't be good, hmm well we need t…
-
See for examples of notebooks https://github.com/Azure/MDTI-Solutions/tree/master/Notebooks
Integrations:
- Threat profiles
- Vulnerabilities
- Reputation scores
-
Hi guys!!
this is my connector configuration:
connector-misp:
image: opencti/connector-misp:6.2.15
environment:
- OPENCTI_URL=http://192.168.137.141:8080
- OPENCTI_TOKEN=${…
-
## Use case
Create a stream connector for ServiceNow for syncing Cases.
NB: We are waiting for API access and more precise use case to begin working on it
-
**Epics:** https://github.com/elastic/security-team/issues/1974 (internal), https://github.com/elastic/kibana/issues/174168
**Depends on:** https://github.com/elastic/kibana/issues/171520
## Summa…
-
project aims and wants
- could I use data to help me with an FPL team?
-
During the refactorisation, we were all talking about respecting or not the [JSON format](https://www.first.org/cvss/cvss-v4.0.json) for variable names. Required ones are "version", "vectorString", "b…
-
Vulnerable Library - bootstrap-3.1.1.min.js
The most popular front-end framework for developing responsive, mobile first projects on the web.
Library home page: https://cdnjs.cloudflare.com/ajax/lib…