Hi Pavan. CVEs are part of the Pre-Att&CK framework. In the Att&CK framework, Exabeam ties detections to TTPs. The approach is CVE agnostic since most exploitation of vulnerabilities involve a new process execution, lateral movement, covering tracks, etc. Our goal is to provide visibility into detecting threats using a dynamic approach such as TTPs instead of a static indicator like IoCs.
Good content.
Really useful - Exabeam is a fantastic product, just wish it was a little more affordable!
Very nicely explained. Thank you.
Hi , can somebody tell me what is the abbreviation of AV signature mentioned in his keynote presentation ?
A virus signature ?
Hi there. The AV signature refers to the virus signature, its unique data, or bits of code... almost like a fingerprint.
Exabeam thanks for brighten things up ! Im a user of exabeam ! Your videos are really helpful and informative ! Thanks a lot !
Hi
Is there a way to auto populate CVE s and use the same for threat hunting??
Hi Pavan. CVEs are part of the Pre-Att&CK framework. In the Att&CK framework, Exabeam ties detections to TTPs. The approach is CVE agnostic since most exploitation of vulnerabilities involve a new process execution, lateral movement, covering tracks, etc. Our goal is to provide visibility into detecting threats using a dynamic approach such as TTPs instead of a static indicator like IoCs.
+