Wednesday 27 December 2017
0 comments
20:31:00

GOSINT - Open Source Threat Intelligence Gathering and Processing Framework

GOSINT - Open Source Threat Intelligence Gathering and Processing Framework


GOSINT - Open Source Threat Intelligence Gathering and Processing Framework


The GOSINT framework is a project used for collecting, processing, and exporting high quality indicators of compromise (IOCs). 


GOSINT allows a security analyst to collect and standardize structured and unstructured threat intelligence.

Applying threat intelligence to security operations enriches alert data with additional confidence, context, and co-occurrence. This means that you apply research from third parties to security event data to identify similar, or identical, indicators of malicious behavior. The framework is written in Go with a JavaScript frontend.

Installation

Please find the installation procedure at
http://gosint.readthedocs.io/en/latest/installation.html

There are three ways to get up and running:


Updates

Updating is simple and encouraged as bugs are reported and fixed or new features are added. To update your instance of GOSINT, pull the latest version of GOSINT from the repository and re-run the build command to compile the updated binary.

godep go build -o gosint

Configuration

GOSINT needs some quick initial configuration to start making use of the framework features. All the settings you will need to specify can be found under the "Settings" tab.

Please find the configuration procedure at 
http://gosint.readthedocs.io/en/latest/configuration.html

Use

Please find the instructions for use at
http://gosint.readthedocs.io/en/latest/use.html

Download

0 comments:

Post a Comment

Note: only a member of this blog may post a comment.

 
Toggle Footer
Top