Skip to content

Category: Threat Intelligence

Curated threat intelligence with IOCs, TTPs, and campaign analysis. Track dark web exposure via CIRCL’s AIL, enrich with geolocation and known malicious sources, and apply intel to drive proactive defense.

The Perils of Threat Intelligence Feed Poisoning: The Importance of Proper Curation and Validation of Artifacts

April 14, 2023 | , , , | 2 minutes
As organizations adapt to the ever-changing cyber threat landscape, they increasingly depend on threat intelligence feeds to remain informed about the latest malicious activities and safeguard their digital assets. These feeds provide real-time, actionable information on a variety of cyber threats, encompassing elements such as IP addresses, domains, malware hashes, and email addresses. However, the very resource designed to protect an organization can also become its Achilles' heel when threat actors poison these feeds, potentially compromising networks and systems. In this blog post, we delve into the significance of proper curation and validation of artifacts as a means to counter the risks linked to threat intelligence feed poisoning.
Read More
Cathy GaphtyBy Cathy Gaphty

Zeek vs NetFlow: Why Léargas chose Zeek

February 3, 2023 | , , , | 1 minute
Zeek vs NetFlow is a decision many organizations face when selecting a network monitoring and security foundation. This overview explains how each approach collects and analyzes traffic—and why we proudly build on Zeek with the Léargas Security platform. What is Zeek? Zeek is an open-source framework for network security monitoring that passively inspects packets and converts activity into structured, real-time logs. Its event-driven architecture
Read More
Cathy GaphtyBy Cathy Gaphty

Léargas has always been about providing “Insight”. Now, it fights for the world!

April 6, 2020 | , , , | 2 minutes
Read More
Cathy GaphtyBy Cathy Gaphty
Load More