Threat Intelligence Report- IOCs Weekly

These reports outline various IOCs detected by my honeypots and provide a snapshot of attacker trends. While these IOCs will be stale by the time you review them, they will provide historical context and opportunities for analysis.  Attacker Location: Connection By Country(20): 07_15_2020-IOC-COUNTRY.csv Top attacking countries are China (23.12%) Ireland (15.26%), United States(7.84%), Russia (7.84%), … Continue reading "Threat Intelligence Report- IOCs Weekly"

Read More

Threat Intelligence Report- IOCs Weekly

These reports outline various IOCs detected by my honeypots and provide a snapshot of attacker trends. While these IOCs will be stale by the time you review them, they will provide historical context and opportunities for analysis.  Attacker Location: Connection By Country(20): 2020_07_06-IOC_COUNTRY.csv Top attacking countries are China (24.87%) Ireland (14.06%), United States(7.91%), Panama (7.31%), … Continue reading "Threat Intelligence Report- IOCs Weekly"

Read More

Threat Intelligence Report- IOCs Weekly

These reports outline various IOCs detected by my honeypots and provide a snapshot of attacker trends. While these IOCs will be stale by the time you review them, they will provide historical context and opportunities for analysis.  Attacker Location: Connection By Country(20): 2020_06_28-IOC_COUNTRY.csv Top attacking countries are China (24.04%) Ireland (16.49%), Russia (8.36%), United States … Continue reading "Threat Intelligence Report- IOCs Weekly"

Read More

Threat Intelligence Report- IOCs Weekly

These reports outline various IOCs detected by my honeypots and provide a snapshot of attacker trends. While these IOCs will be stale by the time you review them, they will provide historical context and opportunities for analysis.  Attacker Location: Connection By Country(20): 2020_06_21-IOC_COUNTRY.csv Top attacking countries are China (24.99%) Ireland (17.19%), Russia (9.78%), United States … Continue reading "Threat Intelligence Report- IOCs Weekly"

Read More

Threat Intelligence Report- IOCs Weekly

These reports outline various IOCs detected by my honeypots and provide a snapshot of attacker trends. While these IOCs will be stale by the time you review them, they will provide historical context and opportunities for analysis.  Attacker Location: Connection By Country(20): 2020_06_14-IOC_COUNTRY.csv Top attacking countries are China (24.99%) Ireland (17.19%), Russia (9.78%), United States … Continue reading "Threat Intelligence Report- IOCs Weekly"

Read More

Threat Intelligence Report- IOCs Weekly

These reports outline various IOCs detected by my honeypots and provide a snapshot of attacker trends. While these IOCs will be stale by the time you review them, they will provide historical context and opportunities for analysis.  Attacker Location: Connection By Country(20): 2020_06_08-IOC-COUNTRY.CSV Top attacking countries are Ireland (32.24%) Russia (16.23%), Panama (14.79%), China (13.36%), … Continue reading "Threat Intelligence Report- IOCs Weekly"

Read More

Threat Intelligence Report- IOCs Weekly

These reports outline various IOCs detected by my honeypots and provide a snapshot of attacker trends. While these IOCs will be stale by the time you review them, they will provide historical context and opportunities for analysis.  Attacker Location: Connection By Country(20): 05_31_2020-IOC-COUNTRY.CSV Top attacking countries are Ireland (21.87%) China (16.67%), Russia (12.01%), Panama (9.97%), … Continue reading "Threat Intelligence Report- IOCs Weekly"

Read More

Threat Intelligence Report- IOCs Weekly

These reports will outline various IOCs detected by my honeypots and provide a snapshot of attacker trends. While these IOCs will be stale by the time you review them, they will provide historical context and opportunities for analysis.  Attacker Location: Connection By Country(20): 05_24_2020-IOC-COUNTRY.csv Top attacking countries are China (23.52%), Ireland (15.6%), Germany(8.58%) and Russia … Continue reading "Threat Intelligence Report- IOCs Weekly"

Read More

Splunk IOC Threat Feed- Open Threat Exchange

Ingesting open source threat feeds should be a trivial effort, especially considering the value they typically contain. Based on my experience getting feeds populating and ingesting into a log management platform, it was anything but simple.  I recently found the OTX add-on for Splunk, which seems to satisfy all my needs. The OTX Add-on requires … Continue reading "Splunk IOC Threat Feed- Open Threat Exchange"

Read More