Oops... more information about this object cannot be shown
Why Am I Seeing This Page?
You have reached this page by following a link from a Fusion Center product (for instance a report, structured intelligence or malicious IOC feed).
Fusion Center intelligence feeds are designed to delivery you a complete picture of the threat landscape for your specific theme(s). For example, if you are following a reference link from a report summary, the full text report can be found in your report feed. This can be delivered via email or for HTTP download based on your delivery preferences.
We also supply all reports as STIX 1.2 report objects to make them visible in your Threat Intelligence Platform, if you have connected it to our TAXII server.
How Do I Connect To EclecticIQ’s TAXII Feed?
Our TAXII discovery endpoint and credentials will have been supplied in your Fusion Center setup email. Our TAXII feed is designed to work with most STIX v1.2 compatible systems in your security estate, including SIEM’s, Threat Intelligence Platforms and Detection/Prevention appliances. We supply an indicator collection for use in detection of malicious activity, as well as reference and report feeds to give contextual information around threats to your organization.
What If I Don’t Have a Threat Intelligence Platform?
A major benefit of our intelligence feeds is that we can ship indicators and reports with contextual data in STIX 1.2 format. To get the most out of this, it is recommended that you connect our Fusion Center TAXII feed to a threat intelligence platform. EclecticIQ Platform is a Threat Intelligence Platform (TIP) that empowers threat analysts to perform faster, better, and deeper investigations while disseminating intelligence at machine-speed. If you would like to trial a demo of the platform, please contact us.
What If I Require More Information About a Threat or Report?
If you require more information about a report or specific threats, the Fusion Center team can be contacted at firstname.lastname@example.org.