IBM contributes the Kestrel threat analysis language to the Open Cybersecurity Alliance (OCA) to streamline threat discovery.
Kestral is used to compose ‘hunt’ flows for threats such as patterns and analytics to create a streamlined process for professions to depend on automation for repetitive tasks. As a result, OCA security experts can now quickly tackle cyber-forensics breaches and investigations.
IBM stated that Kestral has the ability to help identify the threats instead of how to hunt them alone. They will allow the re-use of best practices and reduce the time to create new hunts.
Read More At: zdnet