Make sense of intelligence with powerful graphing capabilities and advanced search
Powerful graphing capabilities help you make sense of incoming intelligence. See clear connections between entities based on their shared characteristics, helping you to place each piece of information into the right context.
Advanced search tools allow you to explore the full collection of intelligence in the repository.
Pivot easily to uncover hidden correlations across multiple large datasets.
Create structured intelligence based on observable incidents, attack patterns and other data points.
Manage structured intelligence concerning adversary tools and methods, threat actors, campaigns and courses of action; and unstructured, multi-paragraph intelligence reports.
Supported entities: Observables, Indicators, Actors, Malware, Vulnerabilities, Attack Patterns or other TTPs, Campaigns, Incidents, Courses of Action and Report.
Generate insightful reports for the right stakeholders
Write compelling reports for the key people in your organization.
Achieve higher levels of context, clarity and urgency by attaching information and graphs directly from your sources and analysis into your reports.
Collaborate with colleagues through secure workspaces that deliver real-time threat analyses supported with long-term trend data
Using workspaces, collaboration was never easier. Work together to track campaigns and cases. Assign a task to a colleague and reference the actual intel. No more emailing CSV’s.
Share and comment on intelligence findings. Analysts can contribute to a centralized intelligence knowledge base, produce custom intelligence, and tune and tweak indicators and observables patterns and signatures for detection and prevention.