Loading…
BruCON 0x07 has ended
This schedule is subject to change, check back regularly. 
Registrations start at 8h30! 
Workshop rooms in the location Novotel are 5 minutes walking from the main venue. 
IMPORTANT notice on the use of SCHED.org!
back to BruCON web site
TIP: to see as grid: click on the "Schedule button"  
Friday, October 9 • 4:30pm - 5:30pm
Creating REAL Threat Intelligence ... with Evernote

Sign up or log in to save this to your schedule and see who's attending!

In the presentation that threat intel vendors do not want you to see, threat data from open source and home grown resources meets Evernote as the ultimate braindump repository with the outcome of producing real actionable threat intelligence that your organization can leverage to stop the bad guys. This presentation discusses an experiment of using Evernote as a informal threat intelligence management platform, the specific concepts and strategies used, and its overall effectiveness. Specific topics covered include the advantages of using an open and flexible platform that can be molded into an open/closed source threat data repository, an information sharing platform, and an incident management system. Although using Evernote in this way in large enterprises is probably not possible, organizations can apply the same reference implementation to build similarly effective systems using open source or commercial solutions. And yeah … threat intel vendors still hold a role in ultimate threat intelligence nirvana but there is a lot you should do on your own first in order to better understand your requirements in searching for that ideal partner.


Speakers
LG

L. Grecs

grecs has almost two decades of experience, undergraduate and graduate engineering degrees, and a really well known security certification. Despite his formal training, grecs has always been more of a CS person at heart going back to his VIC-20, Commodore 64, and high school computer... Read More →


Friday October 9, 2015 4:30pm - 5:30pm
01. Westvleteren University

Attendees (0)