[Bro] IOCs data for hashes.
fatema.bannatwala at gmail.com
Mon Aug 29 06:30:21 PDT 2016
I am working with BRO, trying to add the capability of malware detection
I am already using the intel framework provided by Bro and feeding IOC data
It successfully detects and logs the connection having bad IPs and domains
in intel.log file.
The functionality I would like to add is to detect any malware downloaded
by any of the endpoints, and for that I need some good IOC data of hashes.
I searched the internet for IOCs hashes but couldn't fine any good source
Does anyone have any pointers in the same direction? or any other magic
that can be used to accomplish the same purpose?
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Bro