More sources of threat intelligence exist than ever before, but organizations struggle to make use of this volume of threat data in practical ways. A new way to collect, aggregate, and surface high-value indicators across multiple sources is required—one that can also easily share new protections with peers and other security devices. With these challenges in mind, Palo Alto Networks developed an innovative open source tool, MineMeld. Early adopters of MineMeld have called it the “swiss army knife” of threat intelligence feeds, built on an incredibly flexible engine, and freely available to modify in true open source fashion. This session will introduce MineMeld, including an in-depth demo of how you can use the tool in your organization. Highlights include:
-Aggregating multiple feeds and determination of their efficacy
Consuming TAXII feeds
-Sharing high-value indicators with peer groups and partners
-Pushing new security controls to Palo Alto Networks devices, including IP addresses, URLs and domain names.
-Extending the functionality with an easy to use, flexible platform.
Luigi Mori, Solutions Architect, Palo Alto Networks
Marc Benoit, Vice President of Technical Business Development, Palo Alto Networks
