CyberVeille.chMar 3
📱 MacNoise : un gĂ©nĂ©rateur de bruit de tĂ©lĂ©mĂ©trie macOS pour valider la dĂ©tection EDR
📝 Annonce sur le blog du dĂ©veloppeur 0xv1n (02/03/2026) prĂ©sentant MacNoise, un outil open source visant Ă  tester la visibilitĂ© et la dĂ©tection des solutions de sĂ©curitĂ© sur mac...
📖 cyberveille : https://cyberveille.ch/posts/2026-03-02-macnoise-un-generateur-de-bruit-de-telemetrie-macos-pour-valider-la-detection-edr/
🌐 source : https://0xv1n.github.io/posts/macnoise/
#EDR #OCSF #Cyberveille
MacNoise : un générateur de bruit de télémétrie macOS pour valider la détection EDR

Annonce sur le blog du dĂ©veloppeur 0xv1n (02/03/2026) prĂ©sentant MacNoise, un outil open source visant Ă  tester la visibilitĂ© et la dĂ©tection des solutions de sĂ©curitĂ© sur macOS. MacNoise est un gĂ©nĂ©rateur modulaire de bruit de tĂ©lĂ©mĂ©trie macOS conçu pour l’EDR testing et la recherche sĂ©curitĂ©. Il gĂ©nĂšre de vrais Ă©vĂ©nements systĂšme (connexions rĂ©seau, Ă©critures de fichiers, crĂ©ations de processus, mutations de plist, sondages de permissions TCC, etc.) afin de vĂ©rifier que l’EDR, le SIEM et les pare-feux capturent bien les signaux attendus.

CyberVeille
The Linux FoundationNov 19, 2024

We are excited to announce that the Open Cybersecurity Schema Framework (OCSF) is now part of the Linux Foundation! With support from top tech companies, #OCSF makes it easier for security teams to manage data and respond faster to threats.

Find out more about how OCSF is leading the future of cybersecurity: https://www.linuxfoundation.org/press/open-cybersecurity-schema-framework-ocsf-joins-the-linux-foundation-to-optimize-critical-security-data

#Cybersecurity #OpenSource

Open Cybersecurity Schema Framework (OCSF) Joins the Linux Foundation to Optimize Critical Security Data

Open Cybersecurity Schema Framework (OCSF) Joins the Linux Foundation to Optimize Critical Security Data

Show threadMarkus TackerMar 21, 2024
It's a service around #OCSF: https://www.splunk.com/en_us/blog/security/open-cybersecurity-schema-framework-ocsf-takes-flight-with-v-1-schema-release.html
Open Cybersecurity Schema Framework (OCSF) Takes Flight with v.1 Schema Release | Splunk

The Open Cybersecurity Schema Framework (OCSF) celebrates its first anniversary with the launch of a new open data schema.

Splunk
BubbleSecAug 12, 2023

#OCSF

https://www.splunk.com/en_us/blog/security/open-cybersecurity-schema-framework-ocsf-takes-flight-with-v-1-schema-release.html

Open Cybersecurity Schema Framework (OCSF) Takes Flight with v.1 Schema Release | Splunk

The Open Cybersecurity Schema Framework (OCSF) celebrates its first anniversary with the launch of a new open data schema.

Splunk
Everything Open ConferenceApr 11, 2023

Today in our #EverythingOpen redux, we present @ctudball, who takes us on a tour of how the #InfoSec landscape has changed, the move to #ZeroTrust, #OpenStandards efforts, and the advent of #OCSF - a standard #taxonomy for representing #SIEM events, and the platform-agnostic @opentelemetry.

https://www.youtube.com/watch?v=6o6YlTE-PzQ

"Unlocking the Power of Open Security Standards" - Cameron Tudball (Everything Open 2023)

YouTube
Adam GardnerFeb 23, 2023

My review of 5 leading open source standards: OpenTelemetry, OpenFeature, CloudEvents, CDEvents and the Open Cybersecurity Framework (OCSF).

https://youtu.be/D6KqtJIVcts
#opentelemetry #openfeature #cloudevents #cdfoundation #cdevents and #ocsf

OpenTelemetry, OpenFeature, CloudEvents, CDEvents and OCSF

YouTube
Dotan Horovits #CNCFAmbassadorDec 5, 2022

Earlier this year the Open Cybersecurity Schema Framework (#OCSF) was founded to form a new #opensource standard for #cybersecurity data.
Now AWS is implementing the standard into a #SecurityLake service to collect data from a wide ecosystem uniformly into a #datalake.

#reinvent #reinvent2022

Scott CrawfordNov 30, 2022
Amazon introduces Amazon Security Lake at #reInvent https://aws.amazon.com/about-aws/whats-new/2022/11/amazon-security-lake-preview/
Quick take: Affordable storage at scale not only challenges log management incumbents (and indirectly SIEM since analytics beyond existing AWS offerings are TBD), but also – and significantly – challenges Google (primarily Chronicle) and Microsoft (Sentinel) with the hyperscaler advantage. The cloud bigs “can get it for you wholesale” when it comes to storage and minimize markup – which also targets one of Splunk’s most longstanding issues. SMB may be an initial target (where the skew toward *DR and primarily EDR becomes more pronounced down market), but also keep an eye on their mo behind #OCSF and their initial partners on the spec.
This is just the first step in what is likely a more ambitious direction. Just consider the combo of aligning multi-source data (including competing cloud providers) and AWS observability as to where this could lead. Also note that Jon Ramsey, now at AWS, has built an ambitious security data platform before (at Secureworks).
Introducing Amazon Security Lake (Preview)

Amazon Web Services, Inc.
Dotan Horovits #CNCFAmbassadorNov 30, 2022
Earlier this year the Open Cybersecurity Schema Framework (#OCSF) was founded to form a new #opensource standard for #cybersecurity data. Now
#AWS is implementing the standard into a #SecurityLake service to collect data from a wide ecosystem uniformly into a #datalake
SecuropeanNov 29, 2022

I'm really excited by what I'm reading about #AWS Security Lake announced at #reinvent, particularly the use of OCSF (https://github.com/ocsf). If security vendors could agree on a common standard for security logs it would be a huge headache removed, particularly for smaller businesses who rarely have the resources to implement lots of custom log integrations.

Note to vendors - every RFP and sales call from now on I will be asking you whether you support this standard.

#securitylake #ocsf #infosec

Open Cybersecurity Schema Framework

Open Cybersecurity Schema Framework has 9 repositories available. Follow their code on GitHub.

GitHub