loader image

TYPE OF TOOLS

CATEGORIES

OpenCTI x Mindflow

OpenCTI

By mindflow

OpenCTI was integrated by Mindflow to enable users to automate their incident management and better protect their information system

OpenCTI Overview

OpenCTI is an open-source threat intelligence platform available as a web application. It allows your company to manage its threat intelligence knowledge and observables by structuring, storing, organizing, and visualizing technical and non-technical information about threats.

On the web app you can create a comprehensive tool allowing your analysts to integrate tactical TI (technical information, such as TTPs and observables) and higher-level TI, like strategic (non-technical information, including suggested attribution, victimology, sector of activity, and localization, etc.).

By doing so, you can link each piece of information gathered to its primary source (a report, a MISP event, etc.) and provide features like links between each piece of information.

Finally, on the platform, you can use known frameworks like the MITRE ATT&CK framework or one of your own to help structure the data gathered.

openCTI

Benefits

  • A knowledge management database where you can tailor your threat intelligence databases and cyber operations
  • Visualize known entities and their relationships
  • Create relationships between technical and non-technical information backed by links to primary sources

Related integrations