{"id":4490,"date":"2021-07-13T01:17:39","date_gmt":"2021-07-12T17:17:39","guid":{"rendered":"https:\/\/www.sgnog.net\/?post_type=mec-events&#038;p=4490"},"modified":"2021-07-15T13:01:16","modified_gmt":"2021-07-15T05:01:16","slug":"threat-intelligence-with-community-services","status":"publish","type":"mec-events","link":"https:\/\/www.sgnog.net\/?mec-events=threat-intelligence-with-community-services","title":{"rendered":"Threat Intelligence with Community Services"},"content":{"rendered":"<p><span data-sheets-value=\"{&quot;1&quot;:2,&quot;2&quot;:&quot;Team Cymru provides a variety of freely available solutions for the community. This talk will contain detailed information about two of those solutions:\\n\\nUnwanted Traffic Removal Service (UTRS) : This project is a community service project, where network operators help other network operators mitigate DDoS attacks. Team Cymru is simply the steward and service provider of this service. This is all about building a global collection of network operators that will honor other network operators' requests to black hole attack traffic.\\n\\nNimbusTM : This project allows Services Providers, MSPs, and CSIRT teams to take advantage of Team Cymru\u2019s reputation feeds. NimbusTM correlates flow data with IP Reputation data and prepares dashboards \/ reports via a Kibana interface.\\n\\n This presentation will cover:\\n- What is Team Cymru\\n- What is NimbusTM\\n- Technical presentation on configuring flow exports and how to use metadata for threat intelligence\\n- What is UTRS v1\\n- What is new in UTRS v2 (with a brief on BGP FlowSpec)&quot;}\" data-sheets-userformat=\"{&quot;2&quot;:15165,&quot;3&quot;:{&quot;1&quot;:0},&quot;5&quot;:{&quot;1&quot;:[{&quot;1&quot;:2,&quot;2&quot;:0,&quot;5&quot;:[null,2,0]},{&quot;1&quot;:0,&quot;2&quot;:0,&quot;3&quot;:3},{&quot;1&quot;:1,&quot;2&quot;:0,&quot;4&quot;:1}]},&quot;6&quot;:{&quot;1&quot;:[{&quot;1&quot;:2,&quot;2&quot;:0,&quot;5&quot;:[null,2,0]},{&quot;1&quot;:0,&quot;2&quot;:0,&quot;3&quot;:3},{&quot;1&quot;:1,&quot;2&quot;:0,&quot;4&quot;:1}]},&quot;7&quot;:{&quot;1&quot;:[{&quot;1&quot;:2,&quot;2&quot;:0,&quot;5&quot;:[null,2,0]},{&quot;1&quot;:0,&quot;2&quot;:0,&quot;3&quot;:3},{&quot;1&quot;:1,&quot;2&quot;:0,&quot;4&quot;:1}]},&quot;8&quot;:{&quot;1&quot;:[{&quot;1&quot;:2,&quot;2&quot;:0,&quot;5&quot;:[null,2,0]},{&quot;1&quot;:0,&quot;2&quot;:0,&quot;3&quot;:3},{&quot;1&quot;:1,&quot;2&quot;:0,&quot;4&quot;:1}]},&quot;11&quot;:4,&quot;12&quot;:0,&quot;14&quot;:[null,2,0],&quot;15&quot;:&quot;Calibri&quot;,&quot;16&quot;:10}\">Team Cymru provides a variety of freely available solutions for the community. This talk will contain detailed information about two of those solutions:<\/span><\/p>\n<p>Unwanted Traffic Removal Service (UTRS) : This project is a community service project, where network operators help other network operators mitigate DDoS attacks. Team Cymru is simply the steward and service provider of this service. This is all about building a global collection of network operators that will honor other network operators&#8217; requests to black hole attack traffic.<\/p>\n<p>NimbusTM : This project allows Services Providers, MSPs, and CSIRT teams to take advantage of Team Cymru\u2019s reputation feeds. NimbusTM correlates flow data with IP Reputation data and prepares dashboards \/ reports via a Kibana interface.<\/p>\n<p>This presentation will cover:<br \/>\n&#8211; What is Team Cymru<br \/>\n&#8211; What is NimbusTM<br \/>\n&#8211; Technical presentation on configuring flow exports and how to use metadata for threat intelligence<br \/>\n&#8211; What is UTRS v1<br \/>\n&#8211; What is new in UTRS v2 (with a brief on BGP FlowSpec)<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Team Cymru provides a variety of freely available solutions for the community. This talk will contain detailed information about two of those solutions: Unwanted Traffic Removal Service (UTRS) : This project is a community service project, where network operators help<span class=\"ellipsis\">&hellip;<\/span><\/p>\n<div class=\"read-more\"><a href=\"https:\/\/www.sgnog.net\/?mec-events=threat-intelligence-with-community-services\">Read more <span class=\"screen-reader-text\">Threat Intelligence with Community Services<\/span><span class=\"meta-nav\"> &#8250;<\/span><\/a><\/div>\n<p><!-- end of .read-more --><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","template":"","tags":[57],"mec_category":[],"mec_speaker":[52],"class_list":["post-4490","mec-events","type-mec-events","status-publish","hentry","tag-network-security"],"_links":{"self":[{"href":"https:\/\/www.sgnog.net\/index.php?rest_route=\/wp\/v2\/mec-events\/4490","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.sgnog.net\/index.php?rest_route=\/wp\/v2\/mec-events"}],"about":[{"href":"https:\/\/www.sgnog.net\/index.php?rest_route=\/wp\/v2\/types\/mec-events"}],"author":[{"embeddable":true,"href":"https:\/\/www.sgnog.net\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.sgnog.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=4490"}],"wp:attachment":[{"href":"https:\/\/www.sgnog.net\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=4490"}],"wp:term":[{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.sgnog.net\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=4490"},{"taxonomy":"mec_category","embeddable":true,"href":"https:\/\/www.sgnog.net\/index.php?rest_route=%2Fwp%2Fv2%2Fmec_category&post=4490"},{"taxonomy":"mec_speaker","embeddable":true,"href":"https:\/\/www.sgnog.net\/index.php?rest_route=%2Fwp%2Fv2%2Fmec_speaker&post=4490"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}