The Volexity Threat Intelligence CDF enables users to ingest threat intelligence including, but not limited to, indicators, vulnerabilities, and YARA signatures from Volexity.

Volexity provides world class memory forensics & analysis products and services including incident response, network monitoring and threat intelligence. Volexity’s threat intelligence data is used to identify and mitigate threats both in networks monitored by Volexity and its Threat Intelligence customers. These solutions are used by organizations across the globe including leading technology companies in Silicon Valley, the Fortune 500, and the largest government institutions.

The integration provides the following feeds:

• Volexity - Entities - ingests IOCs from Volexity.

• Volexity - Tags - ingests Adversaries, Campaigns, Vulnerabilities, Reports and Malware type objects from Volexity.

• Volexity - Signatures - ingests Yara Signatures from Volexity.

• Volexity - Reports - ingests Volexity Reports.

The integration ingests the following system object types:

• Adversaries

• Campaigns

• Indicators

  • Email Address

  • FQDN

  • MD5

  • SHA-1

  • SHA-256

• Malware

• Vulnerabilities

• Reports

• Signatures

  • Yara