RST_Engine

IoCs from public sandboxes Dec 2022

Boosting Threat Intel with Automatic Sandbox IoC Gathering

Introducing the new Auto-Collection of IoCs from Public Sandboxes feature, now available on the RST Cloud Threat Intel Engine! As of November 2022, our platform has started automatically collecting indicators of compromise (IoCs) from the most popular public sandboxes. But we don’t stop there. After the collection process is complete, we aggregate the data and

Boosting Threat Intel with Automatic Sandbox IoC Gathering Read More »

cyber threat naming

8 Steps to normalise naming of cyber threats and related entities

One of the challenging thing in IoC aggregation is to match all IoCs connected to one specific threat with each other due to different malware synonyms used by TI experts. Read about algorithm used by RST engine here: https://medium.com/@rst_cloud/8-steps-to-normalise-naming-of-cyber-threats-and-related-entities-817730361217

8 Steps to normalise naming of cyber threats and related entities Read More »