Browse Apps
Integration Documentation
  • Last Updated
    Aug 13, 2024
  • Version
    1.2.4
  • Compatibility
    ThreatQ versions >= 4.30.0

    • Intel471 Alerts

    ThreatQuotient

    intel471.com/

    Overview

    The Intel471 Alerts CDF ingests events, indicators, reports, adversaries, vulnerabilities, malware and tags from Intel471 TITAN API.
    The integration includes the following feeds:
    • Intel471 Alerts - returns a list of Alerts and related information.
    • Intel471 Get Report by ID - supplemental - returns threat data using the .alerts[].report.id from the Intel471 Alerts feed as the reportId parameter.
    • Intel471 Get Watcher Group Name - supplemental - returns threat data using the .alerts[].watcherGroupUid from the Intel471 Alerts feed as the groupId parameter.
    The integration ingests the following system objects:
    • Indicators
    • Events
    • Reports
    • Adversaries
    • Tags
    • Vulnerabilities
    • Identities
    • Malware

    Copyright © 2025, ThreatQuotient, Inc. All Rights Reserved. Privacy Policy