Aviary is a new dashboard that works with CISA's Sparrow threat detection tool.
The US Department of Homeland Security's Cybersecurity and Infrastructure Security Agency (CISA) is launching another security tool to help organizations mitigate threats like those posed by the recent SolarWinds supply chain attack discovered in December.
The tool, called Aviary, is a new dashboard that helps visualize and analyze outputs from CISA's recently-released Sparrow detection tool.. Sparrow aims to help network defenders detect possible compromised accounts and applications in Azure and Microsoft 365 environments.
CISA says it created Sparrow to support hunts for threat activity following the SolarWinds compromise. Aviary — a Splunk-based dashboard — facilitates analysis of Sparrow data outputs.
Last month CISA released the CISA Hunt and Incident Response Program (CHIRP), which aids in the collection of forensic evidence and indicators of compromise from on-premise systems.
More on the Aviary release can be found here.
About the Author(s)
You May Also Like
Guarding the Cloud: Top 5 Cloud Security Hacks and How You Can Avoid Them
April 4, 2024Cybersecurity Strategies for Small and Med Sized Businesses
April 11, 2024Defending Against Today's Threat Landscape with MDR
April 18, 2024Securing Code in the Age of AI
April 24, 2024
Black Hat USA - August 3-8 - Learn More
August 3, 2024Cybersecurity's Hottest New Technologies: What You Need To Know
March 21, 2024Black Hat Asia - April 16-19 - Learn More
April 16, 2024