Alienvault OTX enrichment in Graylog

roaringkitty · August 8, 2024, 1:09pm

1. Describe your incident:
My question: Has anyone enriched their logs with AlienVault OTX? How are you enriching your threat IDs with more information? Is there, for example, a CSV file that I can download or pull to enhance my Graylog with more readable information than what I currently get from AlienVault OTX? This is what I’m currently enriching my log files with, and I need more detailed information to create readable dashboards. I would appreciate an answer ! Thanks in advance

2. Describe your environment:

OS Information: Windows
Package Version: 6.0.3
Service logs, configurations, and environment variables:

roaringkitty · August 19, 2024, 10:01am

PUSH PUSH PUSH PUSH

Is anyone out there using AlienVault OTX to enrich their log files or has a CSV from AlienVault to get “more specific” information about the IDs or names of the threats? Because they are not very “meaningful.”

roaringkitty · August 26, 2024, 6:49am

PUSH PUSH PUSH PUSH PUSH PUSH PUSH PUSH PUSH PUSH PUSH

Someone has some information for me please ?

system · September 9, 2024, 6:50am

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Integrating Alienvault OTX into Graylog Issues Graylog Central (peer support)	3	90	July 1, 2024
AlienVault OTX Query Polling all Pulses Graylog Central (peer support)	1	616	March 14, 2019
AlienVault OTX Pipeline Rules Graylog Central (peer support)	4	923	January 20, 2023
Alienvault OTX Missing - Threat Intel Plugin - Graylog 2.4.4 Graylog Central (peer support)	7	2848	May 22, 2018
AlienVault OTX False Positives Graylog Central (peer support)	1	905	January 24, 2018

Alienvault OTX enrichment in Graylog

Related topics