Cyber threat intelligence (CTI) can be a very useful element in an organisation's cyber security defence practices. By being more aware of threats that may negatively impact us, we can be more prepared, and respond quicker and more effectively to cyber security incidents if they occur.
In this webinar, AusCERT will be explaining how the open-source Malware Information Sharing Platform (MISP) can be used to consume, create and share CTI, including Indicators of Compromise.
MISP is described as: "A threat intelligence platform for sharing, storing and correlating Indicators of Compromise of targeted attacks, threat intelligence, financial fraud information, vulnerability information or even counter-terrorism information."
AusCERT will cover:
- What is CTI and why is it useful?
- What are Indicators of Compromise and how can they be used in cyber defences?
- What is MISP?
- How MISP can be used to consume, create and share CTI.