Badges

User Activity

11 months ago
Try Open Threat Exchange otx.alienvault.com The best one, and now researchers from AlienVault is a part of AT&T, so they have really great data sources and expertise in Threat hunting.
12 months ago
TLDR: SIEM: Security information management: Long-term storage as well as analysis and reporting of log data. Security event manager: Real-time monitoring, correlation of events, notifications, and console views. SOAR: SIEM + Threat Intelligence (IoC's, AI, etc),…
Over 1 year ago
In general, you will have the same problems with any software for log analysis in DHCP environments. But you can use FQDN and can also install agents on assets with dynamic IP. But really, you will have some difficulties with asset and vulnerability management. Try to…