Chapter 11: Assessing Data Quality

In this chapter, we are going to cover the importance of having a good data management process and the consequences that lacking one has for our hunts. We are going to go over several tools that can help us to refine the quality of our data. Improving the quality of our data will have a direct impact on the quality of our hunts and our detections.

In this chapter, we're going to cover the following main topics:

Distinguishing good-quality data from bad-quality data
Improving data quality

Technical requirements

The open source tools mentioned in this chapter are as follows:

OSSEM Power-up: https://github.com/hxnoyd/ossem-power-up
DeTT&CT (short for Detect Tactics, Techniques & Combat Threats): https://github.com/rabobank-cdc/DeTTECT ...

Get Practical Threat Intelligence and Data-Driven Threat Hunting now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Practical Threat Intelligence and Data-Driven Threat Hunting by Valentina Costa-Gazcón

Chapter 11: Assessing Data Quality

Technical requirements

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly