The ThreatQuotient for Carbon Black Response Operation provides users with the ability to interact with Carbon Black Response in two ways. First, it allows users to blacklist MD5 hashes within Carbon Black Response, directly from ThreatQ. Second, it allows users to query Carbon Black Response to see if an indicator (IP Address, FQDN or MD5) has been found in any Threat Reports.