Sqrrl Blog

Apr 27, 2016 4:27:00 PM

Threat Hunting Quick Fix

Originally posted by Samuel Alonso, KPMG Global Security Operations Center threat hunter at http://cyber-ir.com/2016/03/08/threat-hunting-quick-fix/ 

quick-fix-red-button-over-white-background-40156981

Are you currently threat hunting and not finding much? I do not support this threat hunting modality however it is true that I use it when I do not have the time to go on a hunting trip and keep focused.

This is not a silver bullet but it is true that it can help in your hunting trips, looking for already known IOC’s sometimes can bring up interesting results.

There is an interesting thread created in reddit, see below.

Favorite OSINT sites for IOCs

Topics: Incident Response, Threat Hunting, Cyber Threat Hunting, Security Analytics