Security Orchestration, Automation and Response (SOAR)
Security Orchestration, Automation and Response (SOAR) 安全编排和自动化响应
TL;DR
SIEM + 自动化响应
Splunk 郑聿铭-智能驱动的安全协调和自动相应(SOAR)
https://www.threatbook.cn/event/2018/ppt/%E9%83%91%E8%81%BF%E9%93%AD-%E6%99%BA%E8%83%BD%E9%A9%B1%E5%8A%A8%E7%9A%84%E5%AE%89%E5%85%A8%E5%8D%8F%E8%B0%83%E5%92%8C%E8%87%AA%E5%8A%A8%E7%9B%B8%E5%BA%94%EF%BC%88SOAR%EF%BC%89.pdf
PPT 第 8 页 第 11-13 页
参考资料
SOAR平台初探(一)
https://www.w3xue.com/exp/article/201811/6627.html
Black Hat 2018 | 短短三年,SOAR从概念到落地
https://cloud.tencent.com/developer/article/1189115
Leave a Reply