filmov
tv
Anomali STAXX lookup observable
Показать описание
This is a short video walking through the typical use case of using threat intel to add context and meaning to something you have identified - searching STAXX for an observable.
The most common use cases for some sort of threat intel repository is to look up information and understand how bad something is. Often called observables or indicators, STAXX is a repository that you can use to search and look up and find out more about an IP, domain, URL, file hash or even email address.
This is a short video of the typical use case scenario and walkthrough of how you would normally do this and look at the relevant data that is presented.
The most common use cases for some sort of threat intel repository is to look up information and understand how bad something is. Often called observables or indicators, STAXX is a repository that you can use to search and look up and find out more about an IP, domain, URL, file hash or even email address.
This is a short video of the typical use case scenario and walkthrough of how you would normally do this and look at the relevant data that is presented.
0:07:36
0:07:57
0:04:26
0:08:09
0:12:45
0:02:44
0:08:27
0:03:21
0:06:55
0:03:51
0:02:53
0:08:01
0:02:06
0:05:33
0:02:25
0:04:38
0:54:47
0:11:02
0:43:15
0:06:14
0:20:07
0:02:45
0:04:30
0:24:43