python

Posts: 2

Integrating Graylog With TheHive

Whitney Champion on thehive, graylog, automation, api, python, dfir, devops, secops, cortex, defense, incident response, security | 31 Jan 2020

If you couldn't tell by now, we love Graylog. We may have mentioned them a time or two :) We also love TheHive. It makes tracking incidents easy, it's reliable, and it's another well-managed open source project that we support and contribute to. TheHive also integrates with Cortex, which allows us…

Automating Graylog Pipelines

Whitney Champion on graylog, ansible, devops, python, security, automation, secops, continuous integration, dfir | 18 Jun 2019

Part of our job at Recon relies on fine tuning our threat signatures that make up the bulk of our pipeline rules in our Graylog environment. Because of this, they are constantly changing, growing, being tuned, and ultimately becoming more effective over time at detecting anomalous activity.…