OpenDXL In Active Response Scenarios presented at deepsec 2017

by Tarmo Randel,

Summary : Automating response to cyber security incidents is the trend which is - considering increasing amount of incidents organizations handle and ever-increasing attack surface - already becoming mainstream.
In this talk I explore the options for exploiting OpenDXL in the real life situation of mixed environments, legacy solutions and multiple vendors for connecting existing and future cyber security system components for coordinated information exchange and orchestrating incident response actions.