Security automation: from idea to tool

In today’s rapidly evolving cybersecurity landscape, manual threat detection processes struggle to keep pace with the growing sophistication and volume of cyberattacks. Threat hunting, the proactive approach to detecting and neutralizing advanced threats, can be a time-consuming and resource-intensive task. Automation, coupled with open-source tools, offers an efficient and cost-effective way to enhance threat hunting capabilities.

In this video we explore the approach of threat hunting automation using widely available open-source tools, such as MISP, Shuffle, RTIR, IntelOwl. We will discuss how automation frameworks streamline data collection, false-positive management, and incident response, significantly reducing response times and enabling more efficient use of cybersecurity resources.

The session includes:

  • Real-world use cases
  • Tool demonstrations
  • Best practices for implementing automated threat hunting in CSIRTs and SOCs of various sizes

Other news and stories

CTI-AI project: end of year update
CTI-AI project: end of year update
The most common myths related to the implementation of the DORA Regulation
The most common myths related to the implementation of the DORA Regulation
SOCcare December 2025: RondoDox Campaign: Routers Beware
SOCcare December 2025: RondoDox Campaign: Routers Beware
Engaging management and operational teams to do trainings, TTXs, practice sessions, etc.
Engaging management and operational teams to do trainings, TTXs, practice sessions, etc.
Designing an engaging and realistic TTX for an organisation
Designing an engaging and realistic TTX for an organisation
Weekly cyber drills? How to make them a mission possible
Weekly cyber drills? How to make them a mission possible
How to design and lead multi-organisational and multi-national TTXs?
How to design and lead multi-organisational and multi-national TTXs?
NRD Cyber Security liquidates NRD Bangladesh
NRD Cyber Security liquidates NRD Bangladesh