all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

[SANS ISC] Do you collect “Observables” or “IOCs”?

Add to bookmarks
Nov. 10, 2022, 11:48 a.m. | Xavier

/dev/random blog.rootshell.be

I published the following diary on isc.sans.edu: “Do you collect “Observables” or “IOCs”?“: Indicators of Compromise, or IOCs, are key elements in blue team activities. IOCs are mainly small pieces of technical information that have been collected during investigations, threat hunting activities or malware analysis. About the last example, the malware analyst’s goal


The post [SANS ISC] Do you collect “Observables” or “IOCs”? appeared first on /dev/random.

iocs isc sans sans internet storm center sans isc security threat hunting

Visit resource

More from blog.rootshell.be / /dev/random

Hack.lu 2023 Wrap-Up 6 months, 1 week ago | blog.rootshell.be
back blog blog post conference +11
[SANS ISC] macOS: Who’s Behind This Network Connection? 8 months ago | blog.rootshell.be
a network apple edu firewall +13
[SANS ISC] Python Malware Using Postgresql for C2 Communications 8 months ago | blog.rootshell.be
access c2 command command and control +19
[SANS ISC] More Exotic Excel Files Dropping AgentTesla 8 months ago | blog.rootshell.be
agenttesla attackers computers edu +20
[SANS ISC] Have You Ever Heard of the Fernet Encryption Algorithm? 8 months ago | blog.rootshell.be
aes algorithm algorithms cryptography +13
[SANS ISC] Quick Malware Triage With Inotify Tools 8 months ago | blog.rootshell.be
analysis edu files find +14
[SANS ISC] From a Zalando Phishing to a RAT 8 months, 1 week ago | blog.rootshell.be
apple customers daily dhl +23
[SANS ISC] Show me All Your Windows! 8 months, 2 weeks ago | blog.rootshell.be
analysis anti-analysis anti-debugging attackers +17
[SANS ISC] Are Leaked Credentials Dumps Used by Attackers? 8 months, 3 weeks ago | blog.rootshell.be
attackers credentials edu emails +14

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Senior Security Researcher, SIEM

@ Huntress | Remote Canada
View on infosec-jobs.com

Senior Application Security Engineer

@ Revinate | San Francisco Bay Area
View on infosec-jobs.com

Cyber Security Manager

@ American Express Global Business Travel | United States - New York - Virtual Location
View on infosec-jobs.com

Incident Responder Intern

@ Bentley Systems | Remote, PA, US
View on infosec-jobs.com

SC2024-003533 Senior Online Vulnerability Assessment Analyst (CTS) - THU 9 May

@ EMW, Inc. | Mons, Wallonia, Belgium
View on infosec-jobs.com
View more jobs