GigaTap articles tagged threat intelligence.
- Turning Threat Signals Into Real-Time WAF Decisions - Cloudflare now lets customers use Cloudforce One intelligence directly inside WAF rules, reducing the gap between threat detection and enforcement.
- RemotePE Shows Lazarus Is Still Playing the Long Game - Fox-IT links Lazarus to a memory-only RAT used against financial and crypto targets, with staged loaders, EDR evasion, and social engineering at the front
- AI-Assisted Exploits Move From Theory to Operations - GTIG says it identified a zero-day believed to be AI-developed, pointing to a more mature phase of AI use in adversary workflows.
- IntelOwl adoption checklist: useful tool, real tradeoffs - IntelOwl has strong public signals as an open source threat-intelligence project, but teams should review deployment, licensing, maintenance, and enrichmen
- IntelOwl: Threat Intelligence Workflow Without the Guesswork - IntelOwl is a Python project for managing threat intelligence at scale. Here is what its public GitHub metadata supports, who should care, and what to veri
- openSquat Finds Look-Alike Domains Before They Bite - openSquat is a Python tool for spotting newly registered domains that may impersonate real brands. Useful for blue teams, but it still needs validation.
- ThreatPinchLookup: faster OSINT lookups, with caveats - ThreatPinchLookup is a browser-extension repository for security lookup workflows. Its value is in reducing analyst friction, but teams should verify maint
- SpiderFoot maps public attack surface, but verify the output - SpiderFoot is a Python OSINT automation project for threat intelligence and attack-surface mapping. Its value is faster recon, not automatic truth.