Splunk's Threat Intelligence Framework in Enterprise Security enables SOC teams to automatically correlate indicators of compromise (IOCs) against security events. The framework ingests threat feeds, ...
It provides information not only on preparing for an incident, but also what to do during and after. Source is available on GitHub. Phantom Community Playbooks - Phantom Community Playbooks for Splunk ...