Threat Intel for Microsoft Sentinel
How to Investigate Security Incidents with Threat Intelligence in Microsoft Sentinel
Integrating threat intelligence into a security operations center (SOC) investigation process can be challenging. Teams unfamiliar with incorporating threat intelligence into their systems often employ indicators of compromise as mere checklists. While ...
How to Use Threat Intelligence Indicator Feeds with Microsoft Sentinel
Threat intelligence indicator feeds can be a force multiplier for the SOC team looking to improve their efficiency in detecting specific threat actors. However, many organizations rush into purchasing indicator feeds without ...
ReversingLabs File Enrichment API for Microsoft Sentinel
The modern security operations center (SOC) team requires high levels of agility and accuracy to detect and respond to the latest threats. To further empower the SOC in this objective, ReversingLabs has ...
ReversingLabs Content Pack for Microsoft Sentinel
Microsoft Sentinel is revolutionizing the SIEM market by simplifying the process of deploying and monitoring cloud and on-premises environments for security issues. However, operators face a drawback as Microsoft Sentinel gives them ...
Smart Security Operations: How to Enrich Alerts and Data for SOC Efficiency
Example showing ReversingLabs TitaniumCloud file enrichment. Performing triage is one of the most tedious parts of being a SOC analyst. Hopefully, it's an alert that the SOC has an established and well-defined ...
