Skip to content

McHughSecurity

Cyber Security Professional

  • Home
  • Blog
  • Security Operations
  • DFIR
    • Reverse Engineering
      • Dynamic Analysis
      • Static Analysis
  • Vuln. Mgmt
  • Intelligence
    • Open-Source Intelligence
    • Threat Intelligence
      • AIL Framework
      • MISP – Open Source Threat Intelligence Platform
      • OpenCTI
  • Threat Modelling
    • Attack Libraries
    • Attack Trees
    • Mitigating Techniques
    • SaaS Threat Modelling
    • Threat Models
    • Tools
    • Validating Threat Mitigations

Tag cortex

  • Home
  • Hardening TheHive4 and Cortex for public deployment
June 18, 2021

Hardening TheHive4 and Cortex for public deployment

By A.McHugh in Build, Digital Forensics & Incident Response Tag cortex, nginx, thehive

In this post, I talk about hardening TheHive and Cortex for an Internet-accessible deployment. This includes the application of TLS v1.2+ and the configuration of multi-factor authentication. Cortex can be…

Read More

March 20, 2021

TheHive 4.1.0 Deployment and Integration with MISP

By A.McHugh in Build, Digital Forensics & Incident Response Tag #misp, cortex, elasticsearch, thehive

Every few months, StrangeBee puts out an update to TheHive (Security Incident Response Platform). This month they have added Elasticsearch as an index engine to alleviate issues with using Cassandra,…

Read More

March 18, 2021

Building the Assemblyline Analyzer for TheHive’s Cortex.

By A.McHugh in Digital Forensics & Incident Response Tag cortex

Static analysis for me has become more fun with the inclusion of Assemblyline into my arsenal. But the lack of integration between other elements of my FOSS SOC stack was…

Read More

March 3, 2021

Building TheHive4 (4.0.5) and configuring MISP, Cortex and Webhooks.

By A.McHugh in Digital Forensics & Incident Response Tag cortex, misp, thehive, webhooks

Since the last write up I published on TheHive, there have been some significant changes and updates to TheHive. So for this post I will be walking through the installation…

Read More

April 5, 2020

Deploying (and using) TheHive4 [Part 1]

By A.McHugh in Build Tag cortex, elasticsearch, thehive4

In this post I will walk through the deployment, configuration and migration of TheHive to TheHive4, and what improvements have been implemented into this release.

Read More

Search

Recent Posts

  • Auto-updating Ubuntu 20.04 in less than 2 minutes
  • Feeding Analysis Information Leak (AIL) Framework
  • An Introduction to Threat Intelligence
  • Deploying MISP on DigitalOcean or Vultr Cloud Hosting
  • Building CCCS’ AssemblyLine for Static Analysis

Archives

  • April 2022
  • July 2021
  • June 2021
  • May 2021
  • April 2021
  • March 2021
  • February 2021
  • January 2021
  • September 2020
  • April 2020
  • March 2020
  • January 2020
  • May 2019

Recent Posts

  • Auto-updating Ubuntu 20.04 in less than 2 minutes
  • Feeding Analysis Information Leak (AIL) Framework
  • An Introduction to Threat Intelligence
  • Deploying MISP on DigitalOcean or Vultr Cloud Hosting
  • Building CCCS’ AssemblyLine for Static Analysis

Categories

  • AIL Framework
  • Blog
  • Build
  • Design
  • Digital Forensics & Incident Response
  • Frameworks
  • Intelligence
  • MISP – Open Source Threat Intelligence Platform
  • Open-Source Intelligence
  • Operate
  • Security Operations
  • Static Analysis
  • Threat Intelligence

Proudly powered by WordPress | Theme: SpicePress by SpiceThemes