Cyber Security – Where do you start?

  Not a day goes by without a cyber security incident reported in our news feed. Organisations are increasingly concerned about cyber security, and rightly so, as pressure mounts on business leaders to act and protect their organisations. Do nothing, and you are flying blind, unaware of what is happening in your organisation’s network .…

SOAR -ing with TheHive

Introduction SOAR stands for Security Orchestration, Automation and Response, referring to a solution that is used in the threat landscape to better monitor and respond to incidents detected by Security Monitoring tools and technologies. With the evolution of better technologies to detect malicious activities, most organisations are shifting towards the SOAR to utilise automation to…

Network Security Monitoring (NSM) Using Elastic

In the rapidly evolving landscape of cybersecurity, organisations face increasing challenges in protecting their networks from sophisticated cyber threats. As the frequency and complexity of cyber attacks continue to rise, investing in robust network security monitoring (NSM) tools has become essential to detect and respond promptly to potential intrusions.  This blog post aims to explore…

Using Elasticsearch to Trigger Alerts in TheHive

In today’s dynamic and interconnected digital landscape, organisations face an ever-increasing number of cyber security threats. Whether it’s a sophisticated malware attack, a data breach, or a rapidly spreading ransomware campaign, the need for efficient and swift incident response has become paramount. Timely detection and immediate action can make all the difference between a minor…