Gathering, analyzing and sharing threat intelligence is still too hard. From private threat intel sharing groups to Twitter to industry blogs, IOCs come in thick and fast and, unfortunately, non-standardized.
In this workshop we'll show how anyone can build interactive chatbots using Slack, Microsoft Teams, Discord, together with automation platforms, to gather, standardize and enrich threat intel, search for it within their environments and, more importantly, share it - keeping their organizations and the wider information security community safe. We'll show how to simply and easily use the APIs of free online tools and platforms like IOCParser, VirusTotal, APIVoid, Greynoise and other tools to automate threat intel processes.