Securonix OSINT CDF
The Securonix OSINT CDF integration is a collection of open-source intelligence, consisting of blog posts and curated tactical indicators, published by Securonix. The integration enables analysts to stay on top of emerging threats and other TTPs used by threat actors based on the latest research from Securonix as well as provide curated intelligence from OSINT sources for infrastructure sweeps.
Version
1.0.1Categories
Open Source Intelligence
ThreatQ Supported
CrowdStrike Falcon Intelligence CDF
CrowdStrike is a cybersecurity technology firm pioneering cloud-delivered next-generation endpoint protection and services. The CrowdStrike Falcon platform stops breaches by preventing, detecting, and responding to all attack types, at every stage – even malware-free intrusions.
Version
3.5.3Categories
Commercial Intelligence
Recorded Future CDF
The Recorded Future CDF ingests threat intelligence data from the following feeds published by the Recorded Future vendor: Recorded Future Domain Risk List - retrieves information in the form of a CSV list where the first token is risk data and the last token containing the supporting context.
Version
2.13.0Categories
Commercial Intelligence
Cisco Threat Grid
The Cisco Threat Grid CDF is a sandbox which allows the detonation of samples to generate analysis reports. The Cisco Threat Grid CDF for ThreatQ enables a user to ingest their organization’s sample analysis reports from Threat Grid. These samples can be filtered down by their threat score, so you are able to ingest only the detonations that your organization deems important to track.