Security automation: from idea to tool

This video explores the approach of threat hunting automation using widely available open-source tools, such as MISP, Shuffle, RTIR, IntelOwl. We discuss how automation frameworks streamline data collection, false-positive management, and incident response, significantly reducing response times and enabling more efficient use of cybersecurity resources.

The session includes:

Real-world use cases
Tool demonstrations
Best practices for implementing automated threat hunting in CSIRTs and SOCs of various sizes