Hot Topics

An In-Depth Exploration of ARMOR Level 4: Automated Prevention

Joel Wong | October 5, 2023 | Security Automation, security orchestration, SOAR

The post An In-Depth Exploration of ARMOR Level 4: Automated Prevention appeared first on AI Enabled Security Automation ...

Blog Archives - AI Enabled Security Automation

Pending tasks for an incident in Smart SOAR

What Enterprise Security Teams Expect from Case Management Solutions

Pierre Noujeim | September 29, 2023 | alert triage, Automation, case management, enterprise security, security orchestration, Smart SOAR, SOAR

A less-talked about challenge in cybersecurity is managing multiple alert queues. While the volume of alerts is acknowledged as an issue, an important step toward simplifying day-to-day life for security analysts is ...

D3 Security

Automated Incident Response with AlienVault and Smart SOAR

Pierre Noujeim | September 27, 2023 | AlienVault, Cybersecurity, incident management, Incident Response, Integration Guide, IP Reputation, OSINT, Security Automation, security orchestration, Smart SOAR, SOAR, Threat Intelligence

Open-source threat intelligence (OSINT) is a valuable asset to pull from during incident investigations. However, doing this for every alert is monotonous and can be prone to human errors. When using SOAR ...

D3 Security

A Deep Dive into ARMOR Level 3: Automated Response

Joel Wong | September 21, 2023 | Security Automation, security orchestration, SOAR

The post A Deep Dive into ARMOR Level 3: Automated Response appeared first on Low-Code Security Automation & SOAR Platform | Swimlane ...

Blog Archives - Low-Code Security Automation & SOAR Platform | Swimlane

Enriched Visibility: Understand Level 2 of the ARMOR Assessment

Joel Wong | September 7, 2023 | Security Automation, security orchestration, SOAR

The post Enriched Visibility: Understand Level 2 of the ARMOR Assessment appeared first on Low-Code Security Automation & SOAR Platform | Swimlane ...

Blog Archives - Low-Code Security Automation & SOAR Platform | Swimlane

XDR vs. SIEM vs. SOAR: A Vendor-Agnostic Perspective

Shriram Sharma | August 29, 2023 | Analytics & Intelligence, and Response, Automation, cyber defense, Cybersecurity, Extended Detection and Response, Gartner, Security Information and Event Management, security orchestration, SIEM, SOAR, threat detection, threat response, XDR

For modern SOC teams, detection and response is a big data problem. Effective cyber defense hinges on collecting, analyzing, and acting on massive troves of security-relevant data. This is where tools like ...

D3 Security

Isolate: Network traffic filtering workflow using CrowdStrike, VirusTotal, and FortiGate NGFW.

Implementing MITRE D3FEND for ATT&CK Technique T1110: Brute Force

Pierre Noujeim | August 25, 2023 | Active Directory, automation and response, brute-force attack, CrowdStrike, decoy user credential, MITRE ATT&CK, MITRE D3FEND, network traffic filtering, security orchestration, SOAR, T1110, VirusTotal

When account credentials are unknown, attackers may use a brute force attack in order to gain access. This can occur as an early stage of their attack, to gain initial access, or ...

D3 Security

What is ARMOR Foundational Visibility? Level 1 of The ARMOR Assessment Explained

Joel Wong | August 24, 2023 | Security Automation, security orchestration, SOAR

The post What is ARMOR Foundational Visibility? Level 1 of The ARMOR Assessment Explained appeared first on Low-Code Security Automation & SOAR Platform | Swimlane ...

Blog Archives - Low-Code Security Automation & SOAR Platform | Swimlane