tag:blogger.com,1999:blog-4080617372940068027.post1175939584608817708..comments2024-03-13T01:32:25.097-04:00Comments on Journey Into Incident Response: Introducing the Active Threat SearchCorey Harrellhttp://www.blogger.com/profile/15008629321023489214noreply@blogger.comBlogger9125tag:blogger.com,1999:blog-4080617372940068027.post-83684240152321937882015-06-09T21:31:23.939-04:002015-06-09T21:31:23.939-04:00@anon,
Sorry for the late reply. I believe Google...@anon,<br /><br />Sorry for the late reply. I believe Google does have an API for the custom Googles. I never looked in to it so I don't have more info on it.Corey Harrellhttps://www.blogger.com/profile/15008629321023489214noreply@blogger.comtag:blogger.com,1999:blog-4080617372940068027.post-9782678776362716842015-06-08T11:10:11.703-04:002015-06-08T11:10:11.703-04:00Any link to info on how to invoke an API against t...Any link to info on how to invoke an API against the Active Threat Search?<br /><br />ThxAnonymousnoreply@blogger.comtag:blogger.com,1999:blog-4080617372940068027.post-55192677545135341002015-05-24T11:06:49.314-04:002015-05-24T11:06:49.314-04:00I added BinaryDefense and a few other sites. I cou...I added BinaryDefense and a few other sites. I couldn't add the Alienvault due to their data not being searchable through Google for some reason.Corey Harrellhttps://www.blogger.com/profile/15008629321023489214noreply@blogger.comtag:blogger.com,1999:blog-4080617372940068027.post-42269749207730451772015-05-23T12:09:09.147-04:002015-05-23T12:09:09.147-04:00Corey,
This is awesome and thanks for sharing.
...Corey,<br /><br />This is awesome and thanks for sharing. <br /><br />Lakshmi NLakshmi Nhttps://www.blogger.com/profile/04239136690879961650noreply@blogger.comtag:blogger.com,1999:blog-4080617372940068027.post-88945751899273132022015-05-21T16:31:23.588-04:002015-05-21T16:31:23.588-04:00Cool stuff. You should consider adding Alienvault&...Cool stuff. You should consider adding Alienvault's Open Threat Exchange (OTX): https://www.alienvault.com/open-threat-exchange/dashboard#/my/threatfinderDruhttps://www.blogger.com/profile/07406385033402876012noreply@blogger.comtag:blogger.com,1999:blog-4080617372940068027.post-85143099713341352032015-05-14T09:08:06.803-04:002015-05-14T09:08:06.803-04:00So, anyone could create a custom google search, in...So, anyone could create a custom google search, integrate the threat feeds they want, then use the API to pump the intelligence into their SIEM.<br /><br />Neat. Companies charge good money for appliances that basically do the same thing. Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-4080617372940068027.post-68949945099701935392015-05-13T17:22:23.159-04:002015-05-13T17:22:23.159-04:00@Kevin and @Nate
Thank you both for the suggestio...@Kevin and @Nate<br /><br />Thank you both for the suggestions. I will look through the links this weekend about adding them to the index. @Nate, your link may take a bit longer since it's huge. Thanks for sharing this.Corey Harrellhttps://www.blogger.com/profile/15008629321023489214noreply@blogger.comtag:blogger.com,1999:blog-4080617372940068027.post-63988775294484217292015-05-13T17:09:46.154-04:002015-05-13T17:09:46.154-04:00awesome work! there are some more reputation sites...awesome work! there are some more reputation sites located on this blog:<br />http://blog.neu5ron.com/2013/10/malware-url-domain-and-ip-analysis.htmlAnonymousnoreply@blogger.comtag:blogger.com,1999:blog-4080617372940068027.post-30284097128762687852015-05-12T12:08:45.095-04:002015-05-12T12:08:45.095-04:00This is excellent - thank you! Recommend that you...This is excellent - thank you! Recommend that you add Binary Defense Systems' Artillery threat intel feed available here: http://www.binarydefense.com/banlist.txtKevinhttps://www.blogger.com/profile/17876426947741678145noreply@blogger.com