In this updated version of my threat intel framework presentation (using Evernote as a backend database) at SourceDublin, I have really expanded the framework out a bit, introducing notebooks dedicated to a logger, SIEM, indicator database, and adversary tracker. As…
In this updated version of my threat intel framework presentation (using Evernote as a backend database) at Defcon 23 Wall of Sheep, I have added additional feeds and updated the initial tag framework to help better organize data between Open…
In this updated version of my threat intel framework presentation (using Evernote as a backend database) at TakeDownCon Capital Area, I have improved the organization and content flow and added an initial tag framework to help better organize data between…