More than 3 years ago, we decided to build the OpenEx application which allows organizations to facilitate the planning of crisis management exercises, whatever the vertical or the type of drill they would like to schedule. This decision was made because of the obvious lack of such piece of software on the market, moreover in Open Source.

We are glad to announce that after 2 years without any release, we have finally published OpenEx Version 2, fully functional and upgraded with the latest technologies. The demonstration instance has been migrated and is now accessible to anyone.

Image for post
Image for post

Why this new version and why now

After the last release in 2018, the French National Cybersecurity Agency continued to work on the project and to implement new features. During this new development cycle, it was hard for Luatix team to follow the new contributions and integrate them properly with the Open Source basecode. In September 2020, we decided with Julien Richard to dedicate some time to finally merge the new features while rewriting the source code of the application, especially to upgrade libraries which were outdated. …

Real time visibility, detection and forensics capabilities as well as scalable control and remediation over all endpoints are key factors of success when it comes to react quickly to a security incident. That’s the value proposition (among others) of the Tanium Platform.

One of the Tanium strengths’ is also to allow the usage of ad-hoc contents from third party products and organizations to enhance the built-in features of its detection engine, hunting sensors and reputation databases. The integration between OpenCTI and Tanium is definitely based on this flexibility and openness (read the Tanium blog post).

Image for post
Image for post
Tanium Platform overview

Developing the Tanium connector for the OpenCTI platform was conducted with three distinct objectives in…

After the official creation of the Luatix non-profit organization as a French “Loi 1901” association, we have carried out our work on structuring the communities around the products and the organization itself. We are very happy to announce the official membership of the French National Cybersecurity Agency (ANSSI) in Luatix as a founder member (read the ANSSI’s news release).

Image for post
Image for post
ANSSI is now a Luatix Founder Member

ANSSI was, along with the CERT-EU, the first organization to be involved in both Luatix projects, OpenCTI and OpenEx. The platforms are used internally in production, by the Cyber Threat Intelligence team and the Crisis Management team.

The formalization of this membership will bring to Luatix a new breath in terms of human and technical resources, enforcing ANSSI’s contributions to Luatix products over the long term. …

The time has come to forget the old ways to store, organize and share knowledge about cyber threats, indicators of compromise & field observables. We are proud, as a non profit organization and as cybersecurity professionals, to finally reveal OpenCTI version 4, after 8 months of tremendous collective work by the core development team. The demonstration instance has been migrated as well.

Image for post
Image for post
OpenCTI Version 4 Landing Page

Why this version is a major breakthrough

When we released the first version of OpenCTI more than a year ago, we were convinced that the CTI community lacked an effective tool to organize not only technical knowledge of cyber threats but also of TTPs, victimology, contextual data, etc. …

Image for post
Image for post

We are excited to announce the creation of Luatix, a non profit organization aimed to conduct research and development in the fields of cybersecurity and crisis management. Its goal is to provide a community of enthusiasts with a framework as well as material support in order to build and promote their projects.

According to its Articles, the association has 3 types of members:

  • The “Active” members who have access to private communication channels, technical workshops and general assemblies.
  • The “Sponsor” members who have access to private communication channels, technical workshops, roadmap meetings/decisions for all Luatix products and general assemblies.
  • The “Founder” members who have access to private communication channels, technical workshops, roadmap meetings/decisions for all Luatix products and are able to vote in general assemblies. …

About

Samuel Hassine

Director of Security Strategy & Operations at Tanium. Interested in #Security & #Geopolitics. Co-founder of Limeo & Luatix.

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store