L2-Threat Intelligence – Situational Awareness

181214

Micro Focus Micro Focus Community

Micro Focus | Micro Focus Community

This package builds upon the L1 Threat Intelligence package to provide detection and reporting on network traffic to suspicious entities.
915 downloads

Description

New Release 1.3.0.0: updated resource to use campaign information from STIX/TAXII

Release 1.2.0.0: updated resources to detect suspicious filehash

Release 1.1.0.0: updated resources to detect ransomware

User stories supported by this package:

  • Anonymization
  • Dangerous Browsing
  • Phishing
  • Command and Control
  • Reconnaissance
  • DNS Queries Of Malicious Hosts
  • Ransomware Detection
  • Suspicious filehash

Minimum Requirements

Releases

Release
Size
Date
L2-Threat Intelligence 1.3.0.0
61.9 KB
  |  
May 23, 2018
More info Less info
Product Compatibility
ESM
Version 6.8 · 6.9.1 · 6.11.0
Version 7.0
Release Notes

Collect compaign information from STIX/TAXII and use it in resources.

Languages
English
Files
L2-Threat Intelligence 1.2.0.0
60.5 KB
  |  
Sep 1, 2017
More info Less info
Product Compatibility
ESM
Version 7.0
Version 6.8 · 6.9.1 · 6.11.0
Release Notes

Added file hash use case to this package.

Languages
English
Files
L2-Threat Intelligence 1.1.0.0
56.0 KB
  |  
Nov 16, 2016
More info Less info
Product Compatibility
ESM
Version 7.0
Version 6.8 · 6.11.0
Release Notes
  • Updated resources to detect ransomware
Languages
English
L2-Threat Intelligence 1.0.0.0
52.4 KB
  |  
Sep 8, 2016
More info Less info
Product Compatibility
ESM
Version 7.0
Version 6.8 · 6.11.0
Release Notes
Beta version of L2 Threat Intel Activate package
Languages
English

Resources

Your browser is not supported!

Please upgrade to one of the following broswers: Internet Explorer 11 (or greater) or the latest version of Chrome or Firefox