Threat Intelligence

FAST | ACCURATE | SIMPLE | THOROUGH

External Threat Intelligence with Global Insight
• References Global Library of breaches and methods
• Complete information security dictionary to support 14 categories of threat indicators
• References over 20 threat intelligence sources

Global Threat Intelligence Platform

Sharing threat intel and related security information has become an important early action mechanism to prevent and respond to attacks. However, traditional Cybersecurity Threat Intelligence (CTI) is dominated by exchanging static blacklists of IPs, domains and MD5s, lacking higher-level attacker intelligence. Our Cyber Intel team has a long history of tracking various forms of intrusion, providing historical information on APT groups and bringing together various global CTI sources of information* to provide high-quality threat intel. This helps companies quickly through AI automated correlation analysis and knowledge base optimization to identify threats and verify security alerts.
  • provides a complete information security dictionary that supports 14 different threat indicator categories.
  • provides STIX 2.0 reporting of the situation and supports TAXII to receive and push ISAC exchange information.
  • provides a complete API integration interface to quickly integrate threat hunting and security.
* Enterprises can provide paid API keys to expand sources.

INTUITIVE RISK-BASED TRIAGE

Automatically aggregate multiple CTI sources from around the world complete with:

  • severity levels
  • confidence scores
  • multiple threat indicators

through machine learning analysis.

QUICKLY FOCUS ON KEY ALERTS

Rank and prioritize alerts by:

  • Integrating internal and external threats
  • Quantifying and statistically classifying threats through data normalization

This enables timely identification of the most important alerts.

REDUCE MANPOWER COSTS

High-quality precision alerts with:

  • Grading
  • Correlation
  • Aggregation

allow security personnel to correctly and comfortably classify and handle each alert. The enhanced focus on priority of alerts has the effect of increased triage productivity per staff, reducing manpower costs.

Features

  • One-click comparison of global threat intelligence
  • AI labelling of threat sources by industry and country
  • Open source intelligence (OSINT)
  • Commercial and proprietary intelligence sources
  • STIX 2.0 & TAXII 2.0
  • API integration interface
  • Can be integrated with our AI Threat Center and AI Endpoint Agent for threat hunting and data enrichment