Getting more value from your endpoint security tool #2: Querying Tips for threat hunting
Cisco Orbital Advanced Search has an entire section of its Catalog dedicated to Threat Hunting, mapped to the MITRE ATT&CK™ framework, allowing you to query your endpoints for malicious artifacts.
CONNECT WITH US