My main use case for TheHive is incident response and tickets register for DLP. A quick specific example of how I use TheHive for incident response or ticket registration is that we have many tools connected to TheHive like EDR, antivirus, and DLP, and we receive many tickets there, registering and using it to investigate, create some runbooks, and investigate some cases there.
I use TheHive as an end user, implementation engineer, and administrator. My main use cases include ingesting alerts from SIEM systems such as Wazuh or Splunk and acting on them as they come in to investigate them. I also use Cortex, which is a Strange Bee product integrated with TheHive, to help with getting intelligence from multiple sources such as multiple vendors including VirusTotal and AbuseIPDB.
AWS Marketplace is a digital catalog that hosts thousands of software listings from independent software vendors. Businesses can find, test, buy, and deploy software in one place, easing the deployment process.AWS Marketplace offers a vast range of third-party software and services for cloud-based enterprises, observable in its streamlined procurement cycle. It delivers extensive options for integration, deployment, and management of applications on the AWS cloud, optimizing agility and...
My main use case for TheHive is incident response and tickets register for DLP. A quick specific example of how I use TheHive for incident response or ticket registration is that we have many tools connected to TheHive like EDR, antivirus, and DLP, and we receive many tickets there, registering and using it to investigate, create some runbooks, and investigate some cases there.
I use TheHive as an end user, implementation engineer, and administrator. My main use cases include ingesting alerts from SIEM systems such as Wazuh or Splunk and acting on them as they come in to investigate them. I also use Cortex, which is a Strange Bee product integrated with TheHive, to help with getting intelligence from multiple sources such as multiple vendors including VirusTotal and AbuseIPDB.