The DFIR Report CDF enables analysts to automatically ingest posts from The DFIR Report blog, which allows analysts to stay up-to-date on news, vulnerabilities, and other threat research related articles that are published.

The integration provides the following feed:

• The DFIR Report Blog - ingests posts from The DFIR Report blog.

The integration ingests the following object types into the ThreatQ platform:

• Adversaries
• Attack Patterns
• Indicators
• Malware
• Reports
• Tags