How do you get the MISP VM to automatically correlate and enhance event and incident data that you have collected from your SIEM, logs, tickets, or forensic investigations? MISP has a wide array of "enhancement" options to connect to public databases and public (free and paid) APIs to automatically enhance and augment your data so that you do not have to jump from tool to tool or site to site to make sense of the data you have. ---- Subscribe: ---- HEFESTIS: ---- Follow Me Online Here: LinkedIn: Jordan's site: ---- CPE entry (CSV): Link, Type, Title, Presenter, Year Published, Domain, Length , video/webinar, Enhance Security Event Data Using MISP, Jordan M Schroeder, 2020, Security Operations, 10:30