
In this updated version of my threat intel framework presentation (using Evernote as a backend database) at SourceDublin, I have really expanded the framework out a bit, introducing notebooks dedicated to a logger, SIEM, indicator database, and adversary tracker. As…