Machine Readable Threat Intelligence

Security Threat Advisory
Looking Glass
FireEye
Governance Risk and Compliance
Governance / Risk / Compliance
Strategic Consulting
ADSIC
FISMA
ISO 20000 ITSM
ISO 22301 BCMS
ISO 27001 ISMS
PCI DSS
Information Security Review

Data & App Security

Database Security & Protection Data Encryption & Control Enterprise Digital Rights Management Data Vulnerability Assessment Application Protection Vulnerability Assessment & Penetration Testing Web Application Firewall Data Governance

Network Security

Network Access Control Next Generation Firewall Email Security Network IPS Web Gateway Next Generation APT Next Generation DDoS Mitigation Smart DDI

Security Operation & Response

Threat Intelligence Services Machine-Readable Threat Intelligence Threat Intelligence Platform Threat Mitigation Governance Risk & Compliance Cyber Security Transaction Monitoring Compromised Card Monitoring Incident Response & Orchestration Encrypted Calls and Messaging Travel Risk Management & Crisis Avoidance Anti Phishing Services

User Security

Identity Management Single Sign On Two Factor Authentication Privileged User Password Management Insider Threat Management Endpoint Security Management Endpoint Detection & Remediation Employee Monitoring Tool

Infrastructure Security

Virtual Security SCADA Security Mobile Device Management Public Key Infrastructure Certificates

Policy & Compliance Management

NETconsent Compliance Suite File Integrity Monitoring, Network Configuration, and Compliance

High Quality Multifaceted Threat Coverage

Gathered from a wide network of Internet sensors, Surface & Deep web and Darknet sources, Botnet sinkholes, underground channels, human analysis & proprietary crawling algorithms. Enables protection against:

Dynamic threats (APTs, Command and Control servers),
Static attack vectors (eg. phishing urls and malicious urls) &
Compromised account credentials

Flexible Consumption Model

High-quality threat intelligence that can be easily consumed and integrated with your own workflows and security platforms. Specifically:

Security Information and Event Management (SIEM).
Threat Intelligence Platform products.
Security appliances (e.g Application Level Gateways).

Easy to Integrate

MRTI feeds can be ingested and consumed in a matter of minutes:

With easy to understand documentation, downloadable code samples and 24x7 developer support
Application programming interface (API)-based integration (e.g., JSON/OpenTPX, XML, CSV).
Helper libraries to speed up the integration process (e.g., SDKs, bundled scripts, etc.).

Download MRTI Datasheet

Threat Feed Name	Description	Frequency	Format
Infection Records	List of newly identified and historical global infections collected by our VirusTracker botnet monitoring technology	Real-Time	OpenTPX, CSV
Malicious C2 Domains	Daily updated blacklist of 100% known C2 command and control botnet servers	Real-Time	OpenTPX, CSV
Phishing URLs	Real-time feed of global phishing URLs	Real-Time	OpenTPX, XML
Malicious URLs	Real-time feed of global malicious URLs	Real-Time	OpenTPX , XML
New Domain Registrations	Aggregated list of TLDs (.com, .net, .info, etc) registered globally in the last 24h	Daily	OpenTPX , CSV
Compromised Information Monitoring	Early warning of compromised Account Credentials (CACs), compromised Credit Card Numbers (CCNs), and/or compromised Social Security Numbers (SSNs) discovered in the wild.	Daily	OpenTPX , XML