Indicators are increasingly derided within Cyber Threat Intelligence (CTI) as insufficient for defense and analysis, but this view is likely unfair and misunderstands the nature and purpose of atomic indicators. In this presentation, we will explore the idea of an indicator or IOC as an inherently composite object, and how this understanding can fuel robust analysis and detection mechanisms.
Technology Infrastructure & Operations
hackers & threats network security endpoint detection visibility & response intrusion prevention/detection threat intelligence
Share With Your Community