Cyber Threat Intel & Incident Response with TheHive, Cortex & MISP

Agenda:

  • Cyber Threat Intel & Incident Response in 2017
  • MISP, TheHive & Cortex Overview,
  • Installing & configuring the product stack

… Bringing it all together

  • An IR case study,
  • Dealing with notifications,
  • How CTI feeds IR,
  • How IR feeds CTI,
  • The CTI-IR cycle: case study
Print Friendly, PDF & Email