The Trellix MVISION EDR Threats for ThreatQ enables analysts to automatically ingest Assets, Attack Patterns, Indicators, Attributes, TTPs, and Tags.

The integration provides the following feed:

• Trellix MVISION EDR Threats - ingests indicators and their attributes.

The integration ingests the following system objects:

• Assets
• Attack Patterns
• Events
• Indicators
• TTPs