IP Investigation
Audience: Information Security Security Teams: CTI, SOC, DFIR, Fraud
Audience: Information Security Security Teams: CTI, SOC, DFIR, Fraud
Reviewing and investigating suspicious IPs, Domains, URLs, and hashes is just part of the daily routine for many information security professionals. The challenge often times to not only to understand the threat or risk posed by these suspicious indicators, but rather to convey that threat or risk and identify additional details that may be correlated. Today, a SOC analyst observes attack traffic from an IP and requests additional support from the Threat Intel team to understand more about the IP.
Real-time collaboration enabled a broad investigation into a critical security topic, generating a report for the SOC team and a list of actionable indicators that could be used in defensive systems.
King & Union is a cybersecurity company that has built and designed Avalon, the industry’s first cyber analysis platform. The Avalon Cyber Analysis Platform helps analysts streamline threat investigations by providing the intelligence, tools and collaboration security analysts need in a seamless, integrated workspace.