Phishtank

PhishTank is a free community site where anyone can submit, verify, track and share phishing data.

Version

2.0.0

Categories

Open Source Intelligence

Veris VCDB

The VERIS Community Database (VCDB) is an open and free repository of publicly-reported security incidents.

Version

1.0.0

Categories

Open Source Intelligence

Fidelis Elevate Operation

Enrichment operation that has multiple functions

Version

1.1.1

Categories

Enrichment & Analysis

Sekoia

This Feed integrates with Sekoia's InThreat Intelligence Center API as described in Sekoia's Documentation.

Version

1.1.1

Categories

Commercial Intelligence

Infoblox Grid

Adds and deletes IOCs (IP Address, FQDN and CIDR Block) to/from Infoblox DNS Response Policy Zone (RPZ). IOCs added to the RPZ are dropped/blocked by the DNS resolver.

Version

1.4.0

Categories

Network Management

Spamhaus Feeds

Ingests IOCs from Spamhaus Don't Route Or Peer List (DROP) and Spamhaus Extended DROP List (EDROP)

Version

1.0.1

Categories

Open Source Intelligence

Symantec Management Center

Exports indicators of compromise from ThreatQ to a Symantec Management Center cloud instance.

Version

1.0.0

Categories

Commercial Intelligence

abuse.ch Intelligence

Intelligence for fighting malware

Version

1.5.0

Categories

Open Source Intelligence

Flashpoint CVE

Integration Ingests Vulnerabilities (CVEs) and its Related Objects.

Version

1.1.0

Categories

Commercial Intelligence

Soltra Edge Operation

The ThreatQuotient for Soltra Edge Operation provides data export capability between a source object

Version

1.1.1

Categories

Enrichment & Analysis

DomainTools

The ThreatQuotient for DomainTools Operation provides context in the form of attributes and indicato

Version

2.1.0

Categories

Enrichment & Analysis

McAfee AR Operation

This operation enables analysts to query a McAfee Active Response instance for IP addresses and Hashes (MD5, SHA-1 and SHA-256). The search is done via a McAfee ePO. Any search results can be added as related indicators and/or attributes to the enriched indicator.

Version

2.0.3

Categories

Enrichment & Analysis

CORTEX XSOAR Integration for ThreatQ

XSOAR is a security automation and orchestration platform that integrates with ThreatQ

Version

1.X.X

Categories

Orchestration

US-Cert Tips CDF

This integration consumes data provided by the US CERT to notify organizations about threats that exist on the Internet.

Version

2.0.0

Categories

Open Source Intelligence

Malpedia

Allows users to ingest Malware, Actors, and YARA Rules from Malpedia

Version

1.0.0

Categories

Open Source Intelligence

Cybereason Operation

Cybereason Operation

Version

1.0.0

Categories

Enrichment & Analysis

NSFOCUS

NSFOCUS provides crucial threat intelligence and enriched data to the ThreatQ Platform which enable

Version

1.4.1

Categories

Commercial Intelligence

IBM X-Force Exchange Operation

Provides Data Enrichment of indicators of compromise via the IBM X-Force Exchange.

Version

1.1.1

Categories

Enrichment & Analysis

Malware Patrol Intelligence

This Malware Patrol Connector ingests threat intelligence data from seven Malware Patrol feeds. The

Version

2.0.0

Categories

Commercial Intelligence

IBM X-Force Exchange (Feed)

Integrates with IBM IBM X-ForceĀ® security threat intelligence

Version

1.1.0

Categories

Commercial Intelligence