This repository has been archived by the owner on Mar 16, 2023. It is now read-only.
IOC's not making it to Output node #41
Comments
|
Could you share the attributes of that specific IOC and the filters implemented on the output nodes? |
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Recently I have noticed that some IOC's are not being classified into an Output miner.
The logs show that the IOC is going through the motions and should eventually be added to the HighConfRed Output node but it continues to DROP_UPDATE. Please see the below log for a particularly dangerous IOC. Any help is appreciated.
The text was updated successfully, but these errors were encountered: