notes/cisco_team_history.org
This commit is contained in:
parent
a2de5e68e6
commit
9a53efa538
1 changed files with 7 additions and 0 deletions
|
@ -17,3 +17,10 @@
|
|||
|
||||
To my understanding, the main idea behind Playbooks was to have a kind of
|
||||
meta system built by domain experts.
|
||||
The end goal being to have a "smart view" of the complexity of a threat.
|
||||
Being able to discover complex links between different warnings from
|
||||
different places in the system.
|
||||
For example one of the first mission given to the rule engine (and also
|
||||
Jyoti worked on part of it at the beginning of the creation of this team)
|
||||
was to generate COAs (Course of Actions) from Sightings.
|
||||
This give a better idea about the potential
|
||||
|
|
Loading…
Reference in a new issue