-
**Kibana version**:
8.12, but potentially exists in all previous versions as well
**Description of the problem including expected versus actual behavior**:
When viewing threat intelligence resp…
-
Hi DSIEM Team,
While I was trying to test and implement your solution, I figured out the index `siem_alarms` created based on the triggered Suricata rules while carrying out the basic ICMP flood at…
-
Hi Wes,
I've seen your tutorial on [https://glue.ghost.io/leveraging-threat-intel-for-event-enrichment-in-security-onion/](url).
I've been trying it in my own security onion and misp environment …
-
### Integration Name
CrowdStrike Falcon Intelligence [ti_crowdstrike]
### Integration Version
1.1.2
### Agent Version
8.14.2
### Agent Output Type
elasticsearch
### Elasticsearch Version
8.14…
-
Reasoning: Raw CSVs can be leveraged for KQL queries
See Example: https://github.com/Bert-JanP/Open-Source-Threat-Intel-Feeds/tree/main?tab=readme-ov-file#combining-edr-network-traffic-and-ioc-feed…
-
Hello @EvanHerman,
There are 3 security vulnerabilities for Easy Forms for Mailchimp plugin. You can view the 3 unpatched vulnerabilities here:
https://www.wordfence.com/threat-intel/vulnerabili…
-
We need to add an integration for using Mandiant threat intelligence feeds the way we do for MISP and STIIX.
Would [this library help](https://github.com/google/mandiant-ti-client)?
-
**Is your feature request related to a problem? Please describe.**
For our corporate setup, we run 3 Elasticsearch Cluster in Elastic Cloud:
* DEV
* QUAL
* PROD
According to the internal guidelines…
breml updated
2 weeks ago
-
A test failed on a tracked branch
```
AssertionError: Timed out retrying after 150000ms: Expected to find element: `[data-test-subj="expand-event"]`, but never found it.
at expandFirstAlert (webp…
-
It appears that the following paths that are off so they are not returning data:
```
GET /intel/combined/indicators/v1?filter=_marker%3A%3E%221234567890%22&limit=10000&offset=0&sort=_marker.asc
G…