Blog Post Archives

April 14, 2025

Published by Jérôme Fellus on April 14, 2025

Integrations made easier with Meshroom

The cybersecurity industry faces a significant challenge: countless products need to integrate with each other to provide value to end users. This creates a massive, industry-wide integration problem due to the numerous integration requirements. Meshroom is a command-line tool to build and manage Cybersecurity Mesh Architectures (CSMA). It is part of the OXA sub-project under the Open Cybersecurity Alliance (OCA) and offers […]

September 26, 2024

Published by Charles Frick on September 26, 2024

Call for STIX-Shifter Maintainers

The Open Cybersecurity Alliance (OCA) is on a mission to break down the silos in cybersecurity, making it easier for tools and teams to collaborate in defending against evolving threats. Our open-source community is growing, and with that growth comes the need for passionate leaders who can help steer our initiatives to new heights. Today, we’re reaching out to the […]

March 11, 2024

Published by RoseAnn Guttierrez on March 11, 2024

OCA Community Connect: Not just another monthly meeting

Subscribe to the new OCA Community Connect Podcast. The podcast is an invitation to tune in, engage with the content, and join us in our mission to create a more secure, integrated, and collaborative cybersecurity ecosystem.

September 14, 2023

Published by Kenneth Peeples on September 14, 2023

Announcing the Team Threat Hunting Project

Kestrel as a Service The Open Cybersecurity Alliance (OCA) is excited to announce the next milestone of the Kestrel subproject, Kestrel as a Service (KaaS). KaaS enables threat hunting at scale to improve threat detection. It is a Kestrel container and a deployable cloud-managed hunting service for large organizations. The project provides the code and instructions for deploying a […]

July 11, 2023

Published by Xiaokui Shu on July 11, 2023

Kestrel Data Retrieval Explained

Kestrel provides a layer of abstraction to compose hunt-flows with standard hunt steps that run across many data sources and data types. This blogs overviews how data is retrieved, processed, and stored in Kestrel, and explains the 10x data retrieval performance improvement through Kestrel 1.5, 1.6, and 1.7.

June 15, 2023

Published by Constantin Adam and Xiaokui Shu on June 15, 2023

End-to-end Testing for Cyber-Security Applications

Announcing the Federated Search End-To-End Testing GitHub Repository and its first CI/CD usage for Kestrel, a federated search application. Read on.

May 22, 2023

Published by Claudia Rauch on May 22, 2023

OCA Breakfast at RSA 2023

In conjunction with RSAC, the Open Cybersecurity Alliance (OCA) hosted a breakfast event on Wednesday, 26 April. With over 200 people that signed up, the meeting was a mix of short presentations and lively discussions. Here are a few impressions from the event. If you are interested in learning more about OCA, or would like to get involved, you can find links […]

May 10, 2023

Published by Claudia Rauch on May 10, 2023

Machine Readable Representation of Adversary Behavior (video)

The OCA Indicators of Behavior (IOB) Project works to represent patterns of behavior associated with malicious cyber activity. Check out the overview video.