by Mike Clark | Mar 14, 2017 | Blog, Threat Intelligence
A Guide to Indicator Expiration POSTED BY MIKE CLARK There is no shortage of indicator data these days. Large numbers of providers, both commercial and free, have set up shop to help fight the cause. The problem is, a lot of it has a shelf life. Web sites come and...
by Ryan Trost | Mar 7, 2017 | Blog, Threat Intelligence
Scoring…the Initial Pitfall is a B*tch POSTED BY RYAN TROST Intelligence scoring is sexy as hell, especially when done correctly, but teams are almost guaranteed to have a rocky start. The initial pitfall is finding the universal agreement sweet spot across team...
by Mike Clark | Mar 2, 2017 | Blog, Threat Intelligence
Enriching an Indicator with Operations POSTED BY MIKE CLARK One of the ThreatQ platform’s most powerful features is called Operations – our version of “workflow orchestration”. They are customizable plugins (or modules) which can be added to the system in order...
