[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: Re: [cti-users] RE: Towards joyful coding
Were the comments about VERIS a response to my original email? I'm having trouble making the connection. Thanks, John Anderson From: cti-users@lists.oasis-open.org <cti-users@lists.oasis-open.org> on behalf of Terry MacDonald <terry.macdonald@gmail.com>
Sent: Monday, October 19, 2015 5:53 PM To: Foley, Alexander - GIS Cc: cherdevey@gmail.com; cti-users@lists.oasis-open.org Subject: Re: [cti-users] RE: Towards joyful coding Hi All,
VERIS is excellent for classifying data, and some parts of it are used within STIX (Rich Piazza's veris-to-stix tools shows this well: https://github.com/rpiazza/veris-to-stix/blob/master/mapping-info/verisc-enum-mapping-1.3.json).
I'd really recommend VERIS for being able to classify and report attacks against your Organization. In a past org we used VERIS and managed to automate our own DBIR report for management each month. Really helped show the differences between us and the rest
of the world. We are less able to do that now that VERIS have moved to the 'big data' style of clustering their threat actors, but its still useful for management to know.
BTW, if you're using RTIR for tracking security incidents you can customize it to support VERIS. We did and it worked well. BMC Remedy can be customized to do the same thing too - just for a lot more money :).
Cheers
Terry MacDonald On 20 October 2015 at 06:37, Foley, Alexander - GIS
<alexander.foley@bankofamerica.com> wrote:
|
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]