Blog Post Archives - Page 4 of 4

July 26, 2021

Published by Xiaokui Shu and Ian Molloy on July 26, 2021

Building a Huntbook to Discover Persistent Threats from Scheduled Windows Tasks

In this blog post, the first in a series introducing the Kestrel Threat Hunting Language, we will show you how to get started with your first hunt. You’ll learn how to set up your environment, connect to data sources, and search for a common attack technique, scheduled tasks in Windows. You’ll also become familiar with the basic concepts that you […]

June 29, 2021

Published by Carol Geyer on June 29, 2021

IBM Contributes Kestrel Threat Hunting Tool to OASIS Open Cybersecurity Alliance (OCA)

Kestrel lets threat hunters ‘devote more time to figuring out what to hunt, as opposed to how to hunt’ Open Cybersecurity Alliance (OCA), an OASIS Open Project, today announced it has accepted IBM’s contribution of Kestrel, an open-source programming language for threat hunting that is used by Security Operations Center (SOC) analysts and other cybersecurity professionals. Kestrel streamlines cyber reasoning and […]

June 3, 2021

Published by Carol Geyer on June 3, 2021

OCA Intro Video

Learn more about our activities in this short introductory video.

March 3, 2021

Published by Carol Geyer on March 3, 2021

TruSTAR Joins the Open Cybersecurity Alliance

Read the full announcement on the TruSTAR blog.

February 26, 2021

Published by Carol Geyer on February 26, 2021

OCA Solutions Brief

The Open Cybersecurity Alliance is pleased to share some of the output of our work in a downloadable Solutions Brief. The brief covers how to: Download the Solutions Brief here.