Simulate indicators of compromise (IoCs) for your centralized log management (CLM) strategy. Test your custom detection rules. Help to train your analysts.
Embedded Files
Siemulog
Siemulog
Your SIEM's New Buddy
Your SIEM's New Buddy
Many organizations utilize SIEM technology, but are you maximizing the effectiveness of its use? Siemulog is a purple hat indicator of compromise (IoC) simulation tool that can help your organization get the most out of your SIEM software in many different ways.
Using Siemulog for Analyst Training
Using Siemulog for Analyst Training
Create Realistic Training Data Sets with IoCs Built In
Create Realistic Training Data Sets with IoCs Built In
Simulate IoCs and potential malicious activity with Siemulog with MITRE ATT&CK mappings and more
Simulate by ATT&CK Tactic, or by specific noted security event
Seamlessly integrate with natural, noisy data
Work effortlessly with large, realistic data set sizes
Siemulog in Enterprise
Siemulog in Enterprise
Siemulog is an all-in-one IoC simulation tool that can be used right in your enterprise environment. There's no need for instantiating testing environments when using Siemulog. Gain the benefits of simulating TTPs from the MITRE ATT&CK Framework without having to have test infrastructure in place.
Siemulog is mapped to the MITRE ATT&CK Framework and other security datasets so it is as easy as specifying a technique or even a specific event. Siemulog offers precision, flexibility, and scalability when simulating IoCs or potential malicious activity.
Siemulog vs. Other Tools
Siemulog vs. Other Tools
Traditional attack simulation tools must be run in controlled test environments
Requires set up, approval, and other overhead factors
Adds additional step between attack simulation and visualization when compared to Siemulog
Siemulog is safe to run on your networks, outside of any containerized testing environment
Siemulog offers attack simulation features, but also much more
Features for working with your custom data sources
Ability to generate "future" events for training datasets/rule testing
Direct interface with Elastic stack, AWS S3, ...
And more
Siemulog at Black Hat 2023
Siemulog at Black Hat 2023
AttackIQ Booth 3128
AttackIQ Booth 3128
When: August 10, 12:30-12:50 PT
When: August 10, 12:30-12:50 PT
Where: Black Hat AttackIQ booth: 3128
Where: Black Hat AttackIQ booth: 3128
Discussion Contents:
Human Factors in Security Dashboards
Applying Display Design Principles to Security Dashboards
Purple Teaming Security Dashboards with Siemulog
Feature Overview of Siemulog
Applicability of a Tool Like Siemulog
Siemulog vs. Similarly-Advertised Tools
Dominick Lalena's LinkedIn
Page updated
Google Sites
Report abuse