Browse Apps
Integration Documentation
  • Last Updated
    Feb 10, 2026
  • Version
    1.0.0
  • Compatibility
    ThreatQ versions >= 5.29.0

    • TweetFeed GitHub CDF

    ThreatQuotient

    Overview

    The TweetFeed GitHub CDF integration for ThreatQ enables analysts to automatically ingest indicators of compromise and related malware derived from curated Twitter content published via 0xDanielLopez’s GitHub repository.

    The integration provides the following feed:

    • TweetFeed GitHub - retrieves a user-selected CSV file from the GitHub repository, parses indicators of compromise, and associates related malware based on applied tags.

    The integration ingests indicators and indicator attributes into ThreatQ.

     

    Google Threat Intelligence CDF

    needs an updated description as we added a new endpoint - use text below

     

    Google is on a mission to make every organization secure from cyber threats and confident in its readiness. They deliver dynamic cyber defense solutions powered by industry-leading expertise, intelligence, and innovative technology.

    The Google Threat Intelligence CDF integration provides the following feeds:

    • Google Threat Intelligence - ingests compromised Adversaries objects and any related Indicators, Malware, Vulnerabilities, Attack Patterns, and Tags.
      • Google Threat Intelligence Related Malware (Supplemental) - returns associated collections of malware family objects.
      • Google Threat Intelligence Related Attack Pattern (Supplemental) - fetches related attack patterns.
      • Google Threat Intelligence Related Vulnerabilities (Supplemental) - fetches related CVEs.
      • Google Threat Intelligence Related Campaigns (Supplemental) - returns associated collections of campaign objects.
      • Google Threat Intelligence Related IOC (Supplemental) - fetches related indicators to threat actors.
      • Google Threat Intelligence Related Adversaries (Supplemental) - fetches related adversaries.
    • Google Threat Intelligence Campaigns - ingests a list of campaigns tracked by Google Threat Intelligence.
    • Google Threat Intelligence Indicators - ingests a list of indicators tracked by Google Threat Intelligence.
    • Google Threat Intelligence Malware - ingests a list of malware tracked by Google Threat Intelligence.
    • Google Vulnerability Intelligence - ingests a list of vulnerabilities tracked by Google Threat Intelligence.
    • Google Threat Intelligence Threat Lists - ingests indicators from the selected threat lists.
    • Google Digital Threat Monitoring Alerts - ingests alerts for the current organization.

    The integration ingests the following system objects:

    • Adversaries
    • Attack Patterns
    • Campaigns
    • Events
    • Indicators
    • Malware
    • Signatures
    • Vulnerabilities

    Copyright © 2026, ThreatQuotient, Inc. All Rights Reserved. Privacy Policy