search menu icon-carat-right cmu-wordmark

Indicator Expansion with Analysis Pipeline

January 2015 Presentation
Daniel Ruef

In this presentation, given at FloCon 2015, Dan Ruef discusses indicator expansion.

Watch

Abstract

In this presentation from FloCon 2015, Dan discusses indicator expansion, a process of using one or more data sources to obtain more indicators of malicious activity by identifying those related to currently known indicators.