loader image

AlienVault

x Mindflow

AlienVault and Mindflow have partnered to enable users to automate their incident management and better protect their information systems.

AlienVault Overview

AlienVault Open Threat Exchange (OTX) is a crowd-sourced threat intelligence data platform. It allows security researchers and threat data producers to share research and investigate new threats. Access to AlienVault OTX is open to all. Thus, you can collaborate with a worldwide community of threat researchers and security professionals using this platform.

The web-based solution automatically provides updates for specific detection of the latest threats. Unlike other threat intelligence feeds focused on one security control, AlienVault delivers multiple coordinated rulesets fueled by the collective power of the OTX.

The platform also offers high-frequency updates of indicators of compromise (IoCs) based on details collected about attackers’ infrastructure (i.e., IP addresses, domains, URLs). It also lets you gather further information about the tools they use to infiltrate systems (i.e., file hashes and static/dynamic analysis of exploit kits, malware, etc.).

The data OTX platform provides you with consists of two chief components: Pulses and IP Reputation.

Pulses are collections of IoCs reported by the community, which other community members review and comment on. Pulses provide you with a summary of the threat, a view into the software targeted, and the related IoCs reported by the community. IP Reputation provides notification of communication between known malicious hosts and your assets.

By integrating AlienVault, Mindflow allows you to easily synchronize the Threat Intelligence available in OTX to the tools you use to monitor your environment. 

alienvault

Benefits

  • Have access to a crowd-sourced database of over  19 million threat indicators contributed daily
  • A worldwide community of researchers and analysts to investigate emerging threats
  • Identify if your endpoints have been compromised in cyber attacks
  • Automatic updates of IP Reputation data submitted by the OTX community to assess their threat ranking

Related integrations