• SIEM & Log

  • All Categories

  • Enrichment & Analysis

  • Intel Feeds
    • Commercial Intelligence
    • Open Source Intelligence

  • AI

  • Orchestration

  • SIEM & Log

  • Ticketing

  • EDR

  • Sandbox

  • Threat Prevention

  • Library

  • Network Management

  • Vulnerability Management

Sort by

Popular Newest Recently Updated A-Z Z-A

Back

ThreatQ App for IBM QRadar

The application allows IBM QRadar to ingest ThreatQ indicators of compromise (IoCs) into references

Categories

SIEM & Log

ThreatQ Supported

Archer

The Archer and ThreatQuotient integration simplifies exchange of information in either direction

Categories

SIEM & Log

Developer Supported

Netwitness

ThreatQuotient connector with the RSA NetWitness Platform

Categories

SIEM & Log

Developer Supported

UPDATED

ThreatQuotient App for Splunk

The new ThreatQuotient App for Splunk improves on previous capabilities while incorporating feedback

Categories

SIEM & Log

ThreatQ Supported

IBM QRadar Operation

IBM QRadar Operation provides a historical look up of events related to IP Address

Version

1.4.0

Categories

SIEM & Log

Download

ThreatQ Supported

UPDATED

ThreatQuotient Add-on for Splunk

The ThreatQuotient Add-On for Splunk

Categories

SIEM & Log

ThreatQ Supported

Hortonworks Cybersecurity Platform (HCP) Connector

Integrates ThreatQ with the Kafka brokers installed in HCP

Version

1.1.3

Categories

SIEM & Log

Download

ThreatQ Supported

Trellix ESM Connector

The integration uses the Trellix ESM API to upload indicators to watchlists based on at least one user-defined saved ThreatQ Threat Library search. These searches are used to keep the data within the Trellix ESM watchlists fresh, and it ages out stale data with every execution.

Version

1.0.0

Categories

SIEM & Log

Download

ThreatQ Supported

ExtraHop Connector

Allows the user to export indicators directly to Extrahop.

Version

1.3.2

Categories

SIEM & Log

Download

ThreatQ Supported

LogRhythm

Bi-directional integration with the LogRhythm SIEM XDR.

Version

1.5.2

Categories

Commercial Intelligence,SIEM & Log

Download

ThreatQ Supported

UPDATED

Splunk Operation

This operation will do a lookup within Splunk to find logs related to an indicator

Version

1.2.1

Categories

SIEM & Log

Download

ThreatQ Supported

UPDATED

Securonix Unified Defense SIEM CDF

The Securonix Unified Defense SIEM CDF for ThreatQ enables analysts to ingest statistical reports and identities from Securonix.

Version

1.2.0

Categories

Commercial Intelligence,SIEM & Log

Download

ThreatQ Supported

Securonix IOC Export

ThreatQuotient makes it easy for customers to export IOCs to Securonix.

Categories

Commercial Intelligence,SIEM & Log

ThreatQ Supported

ArcSight SOAR App

The ArcSight SOAR App is a bidirectional integration is designed to import cases from ArcSight SOAR as events with related indicators, and export enriched indicator data to ArcSight SOAR.

Version

1.0.0

Categories

SIEM & Log

Download

ThreatQ Supported

Elastic Operation

The Elastic Operation enriches submitted system objects with information found in Elastic Security. Elastic Security unifies SIEM, endpoint security, and cloud security on an open platform, arming SecOps teams to protect, detect, and respond at scale. These analytical and protection capabilities, leveraged by the speed and extensibility of Elasticsearch, enable analysts to defend their organization from threats before damage and loss occur.

Version

1.0.1

Categories

Enrichment & Analysis,Commercial Intelligence,SIEM & Log

Download

ThreatQ Supported

Elastic Security CDF

The Elastic Security CDF allows the automatic ingestion of alerts and cases from Elastic Security into ThreatQ. This enables analysts in ThreatQ to stay up to date with the latest alerts and cases, as well as enabling platform to re-prioritize indicators based on sightings. Elastic Security unifies SIEM, endpoint security, and cloud security on an open platform, arming SecOps teams to protect, detect, and respond at scale. These analytical and protection capabilities, leveraged by the speed and extensibility of Elasticsearch, enable analysts to defend their organization from threats before damage and loss occur.

Version

1.0.2

Categories

Commercial Intelligence,SIEM & Log

Download

ThreatQ Supported

Fortinet FortiSIEM IOC Export Guide

Create exports of your IoCs within your ThreatQ instance and import them into Fortinet ForiSIEM.

Categories

SIEM & Log

ThreatQ Supported

Elastic Action

The Elastic Action integration enriches indicators with information found in Elastic Security. Elastic Security unifies SIEM, endpoint security, and cloud security on an open platform. This allows SecOps teams to protect, detect, and respond at scale. These analytical and protection capabilities, leveraged by the speed and extensibility of Elasticsearch, enable analysts to defend their organization from threats before damage and loss occur.

Version

1.0.0

Categories

Orchestration,SIEM & Log

Download

ThreatQ Supported