14 Threat Intelligence in a SOC Analyst’s Day

Threat intelligence platforms play a crucial role for cybersecurity analysts to investigate aspects of cyber threats. As a Security Operations Center (SOC) analyst, you should leverage and take advantage of the different threat intelligence platforms to investigate cyber threat artifacts such as IPs, domains, hashes, and so on.

The objective of this chapter is to learn about the meaning of threat intelligence, the role of threat intelligence in SOCs, and how to use the VirusTotal, IBM X-Force, AbuseIPDB, and Google platforms to investigate cyber threat artifacts.

In this chapter, we’re going to cover the following main topics:

Introduction to threat intelligence
Investigating threats using VirusTotal ...

Get Effective Threat Investigation for SOC Analysts now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Effective Threat Investigation for SOC Analysts by Mostafa Yahia

14

Threat Intelligence in a SOC Analyst’s Day

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly