Is there a place for Open Source in businesses and does the onion worth peeling? I will share real-life examples of how we use Open Source sandbox and IOC scanners in our security incident research and what it has led to.