A List of Third-Party Services to Determine Indicator Badness
When an analyst is reviewing logs from various environment sources such as Azure Active Directory, perimeter firewalls, email gateways, Amazon Web Services, endpoint protection and others, they need to check for activity from other sources to make a determination that the domain, URL, or IP address (indicator) warrants further investigation/policy action/control change based on activity... Continue reading A List of Third-Party Services to Determine Indicator Badness