About the Integration

The Trellix ATD operation enriches ThreatQ objects with context obtained from the Trellix ATD API.

About Trellix ATD : Powerful advanced threat detection

• Uncover Hidden Threats
  • Combine in-depth static code analysis, dynamic analysis (malware sandboxing), and machine learning to increase zero-day threat and ransomware detection.
• Threat Intelligence Sharing
  • Immediately share threat intelligence across your entire infrastructure—including multi-vendor ecosystems—to reduce time from threat encounter to containment.
• Enable Investigation
  • Validate threats and access critical indicators of compromise (IoCs) needed for investigation and threat hunting.