
Trellix MVISION EDR Threats CDF
Overview
The Trellix MVISION EDR Threats for ThreatQ enables analysts to automatically ingest Assets, Attack Patterns, Indicators, Attributes, TTPs, and Tags.
The integration provides the following feed:
- Trellix MVISION EDR Threats - ingests indicators and their attributes.
The integration ingests the following system objects:
- Assets
- Attack Patterns
- Events
- Indicators
- TTPs