Paul Poputa-Clean

icon indicating an email [email protected]

icon location Redmond icon location has SANS certs, loves the cloud, security, automation, analytics, python, and Ducatis

Results 8 comments of Paul Poputa-Clean

PCAP Compressions

i remember somebody laughing at me when i suggested this

WISE service to interract with CRITs

@awick - i didn't see your response until too late. @mgoffin, do you guys have a demo version of crits running anywhere? Otherwise, @andy, it would be just as easy...

WISE service to interract with CRITs

damnit- i managed to let this one slide. can we reprise the conversation. I can make a crits test version available need be.

[feature proposal] Kafka as SPI data output

I asked for something similar a while back. Makes a lot of sense at large deployments and to further enrich spi data outside of wise. The added complexity is non-trivia,...

Duplicate indicators in CRITs

I liked the added sources - it keeps track of where the IP is coming from and when - a cheap way to analyze when you saw the IP and...

Duplicate indicators in CRITs

@alexcpsec, here's a temporary fix for this: https://github.com/mlsecproject/combine/pull/129 I got to look at @sooshie 's branch and it has a lot of promise - once you're ready to head that...

Adding data into CRITs

@mgoffin, i wanted to add the sources automatically via Combine, but t the time, the API didn't allow for that (and I didn't know how to look for the sources...

Adding data into CRITs

@shiv183, good job on getting it going. Sorry for crappy docs on my part on the CRITs integration. As for the inbound / outbound, but not sure it's worth the...