December 2021

Splunk SOAR Playbooks: TruSTAR Indicator Enrichment

Dec 14, 2021 By Philip Royer In Splunk

SOAR use cases come in all shapes and sizes, but almost all of them rely on threat intelligence to determine the risk posed by the various indicators in the event. Our two new community playbooks leverage Splunk Intelligence Management (previously TruSTAR) to gather intelligence about indicators and enable rapid manual response by an analyst within a single prompt.

Read Post

Splunk

Read more about Splunk SOAR Playbooks: TruSTAR Indicator Enrichment

Splunk SOAR Playbooks: TruSTAR Indicator Enrichment

Dec 9, 2021 By Splunk In Splunk

This playbook shows how Splunk Intelligence Management (formerly TruSTAR) normalized indicator enrichment is captured within the notes of a container for an analyst to view details and specify subsequent actions directly within a single Splunk SOAR prompt for rapid manual response.

View Video

Splunk

Read more about Splunk SOAR Playbooks: TruSTAR Indicator Enrichment

To Reinvent SOAR, Automation Is only a Feature

Dec 7, 2021 By Omer Efrat In Torq

Security, by its very nature, is one of the most innovative fields on the planet. Every technological advancement carries with it a handful or more of new attack vectors, which in turn lead to a dizzying amount of security innovation as our industry works to mitigate risk and defend against threats. But for all this innovation, there are a few ways in which security lags far behind.

Read Post

Torq

Read more about To Reinvent SOAR, Automation Is only a Feature

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

December 2021

Splunk SOAR Playbooks: TruSTAR Indicator Enrichment

Splunk SOAR Playbooks: TruSTAR Indicator Enrichment

To Reinvent SOAR, Automation Is only a Feature

Monthly Archive

Follow Us