-
Hi
This is great work. Much appreciated.
One of the features of Splunk Enterprise Security (ES) is to pull threat feeds as CSV and let ES perform the matching (Threat Activity feature of ES). Sp…
-
Hi
I am using Wazuh in a docker container, with a docker file based off of [https://hub.docker.com/r/wazuh/wazuh/dockerfile](). I have added a few things to if apache2-utils and a basic main.cf to …
-
Hi all,
I would like to integrate my MISP Platform with IBM Qradar (To permit at Qradar to get the IoCs from MISP) but i saw on IBM xforce website that was developped an app to allowed this integra…
-
I downloaded graylog-plugin-threatintel-0.10.0.jar and placed in plugins folder.
Plugin works (eg. threat_intel_lookup_ip) but I can see errors:
> [LocalCopyListProvider] Abuse.ch Ransomware track…
-
I have a taxii server which have services `discovery`, `collection-management`, `poll` and `inbox`.
Now what is endpoint service is it discovery or collection or poll ?