|
|
|
|
|
|
by sifex
634 days ago
|
|
|
I'm currently finalising a Security Operations app that centralises triage for security alerts (North / https://north.sh) into an intuitive interface that better helps Security Operations teams, MSSPs & SOCs. It tries to deal with alert fatigue via some nice de-duplication techniques (via customisable aggregation and correlation rules), manages and runs detection rules against different logging platforms (Elastic, Splunk and ALA/Azure) with Validation and Simulation testing, and will lower the time that it takes to determine malicious activity by presenting as much relevant information per security alert as possible. Hopefully to launch sometime before end-of-year. If you're interested, I'm always free to talk via alex@sinn.io, or sign up to the newsletter. https://north.sh/ |
|
|