Forum Discussion

Antonio_Alejandro's avatar
Jun 01, 2022

New Blog Post | Using Python to unearth a goldmine of threat intelligence from leaked chat logs

Using Python to unearth a goldmine of threat intelligence from leaked chat logs - Microsoft Security Blog

 

Dealing with a great amount of data can be time consuming, thus using Python can be very powerful to help analysts sort information and extract the most relevant data for their investigation. The open-source tools library, MSTICPy, for example, is a Python tool dedicated to threat intelligence. It aims to help threat analysts acquire, enrich, analyze, and visualize data.

 

This blog provides a workflow for deeper data analysis and visualization using Python, as well as for extraction and analysis of indicators of compromise (IOCs) using MSTICPy. Data sets from the February 2022 leak of data from the ransomware-as-a-service (RaaS) coordinated operation called “Conti” is used as case study.

 

 

No RepliesBe the first to reply

Resources