This time I would like to ask for your assist how to build dynamic list for indicators of compromise (IOC). I'm interested in this feed https://paste.cryptolaemus.com/ but every day they create another subpage therefore I cannot direct ESM to specific source. Is there any feature which allow to create dynamic watchlist based on mentioned feed, or can you recommend another source of IOC?
I would also suggest Best practice to avoid any infection in your network: -Make sure all the systems are running on latest windows security update Patch. -Regularly update AMCORE/DAT version in all the systems. -Remove all the systems form the network which has reached EOD (windows 2003 and windows XP
Was my reply helpful? If you find this post useful, Please give it a Kudos! Also, Please don't forget to select "Accept as a solution" if this reply resolves your query!
Don't forget, when your helpful posts earn a kudos or get accepted as a solution you can unlock perks and badges. Those aren't the only badges, either. How many can you collect? Click here to learn more.
Community Help Hub
New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.