The Luminar Cognyte Threat Intelligence CDF integration enables the automated ingestion of threat intelligence from Cognyte Luminar into the ThreatQ platform.

Cognyte, a global leader in security analytics software, delivers solutions that transform diverse data sources into actionable intelligence. Its asset-based cyber intelligence platform, Luminar, equips organizations to proactively monitor, anticipate, and mitigate threats across the web.

The integration provides the following feeds:

• Luminar Cognyte IOCs – ingests Indicators of Compromise (IOCs) including file hashes, IPs, domains, URLs, and email addresses.
• Luminar Cognyte Leaked Records – ingests compromised account credentials with related incident context.
• Luminar Cognyte Cyberfeeds – provides curated threat intelligence reports, malware, vulnerabilities, campaigns, and threat actors.

The integration ingests the following object types:

• Adversary
• Campaign
• Compromised Account (custom object)
• Identity
• Incident
• Indicators
• Malware
• Report
• Signatures
• Vulnerability