Davide Veneziano – WindowsTechs.com

Testing a Threat Pattern: Quality is Never an Accident

Posted on March 27, 2017 by Davide Veneziano

John Ruskin, one of the great visionaries of the 19th century, said “Quality is never an accident; it is always the result of intelligent effort”, in our continuing journey through the lifecycle of a threat pattern, we are now at the testing phase. After analyzing requirements, asset and threats, designing a general and reusable model for the threat pattern and implementing the…

The post Testing a Threat Pattern: Quality is Never an Accident appeared first on Speaking of Security – The RSA Blog.

Continue reading Testing a Threat Pattern: Quality is Never an Accident→

Engineering The Design Of A Threat Pattern

Posted on January 16, 2017 by Davide Veneziano

In our journey of developing and maintaining threat patterns, we have now arrived at a critical phase: the design. While the need of an implementation phase is immediate as well as the evaluation of the background analysis in order to build something meaningful (as explained by my colleague, Demetrio Milea) – the intermediate design phase is the…

The post Engineering The Design Of A Threat Pattern appeared first on Speaking of Security – The RSA Blog.

Continue reading Engineering The Design Of A Threat Pattern→

The Life Cycle of a Threat Pattern

Posted on October 4, 2016 by Davide Veneziano

Applying a structured approach to developing and maintaining significant threat patterns is absolutely key to successfully hunting for the advanced TTPs used by many motivated threat actors. In the post, Context in Risk-Based Threat Patterns, author Demetrio Milea suggested a simple and effective method borrowed from the Software Development Life Cycle (SDLC) to design and maintain threat patterns…

The post The Life Cycle of a Threat Pattern appeared first on Speaking of Security – The RSA Blog.

Continue reading The Life Cycle of a Threat Pattern→