all InfoSec news
MISP Data Maintenance - Pulling & Retaining Current Data
March 5, 2024, 4:11 p.m. | /u/StressedOutMouse
For [Blue|Purple] Teams in Cyber Defence www.reddit.com
I hope everyone is doing well!
I haven't able to find the answer to this and was hoping to get some guidance here. Is there an ideal way to
1. Maintain the MISP instance so it only has events and attributes for let's say the past 90 days?
2. Pulling only a recent set of data from a data feed like the past day?
Currently I have the feeds for Abuse.ch, CIRCL and CrowdStrike. It's just been a lot …
attributes blueteamsec current data doing events find guidance hello hope instance maintenance misp
More from www.reddit.com / For [Blue|Purple] Teams in Cyber Defence
How malware authors play with the LNK file format
2 days, 13 hours ago |
www.reddit.com
The Best Way to Start with AWS Security Hub
2 days, 15 hours ago |
www.reddit.com
Jobs in InfoSec / Cybersecurity
CyberSOC Technical Lead
@ Integrity360 | Sandyford, Dublin, Ireland
Cyber Security Strategy Consultant
@ Capco | New York City
Cyber Security Senior Consultant
@ Capco | Chicago, IL
Sr. Product Manager
@ MixMode | Remote, US
Corporate Intern - Information Security (Year Round)
@ Associated Bank | US WI Remote
Senior Offensive Security Engineer
@ CoStar Group | US-DC Washington, DC