Accelerate Incident Response with Threat Intelligence
This paper explains how Threat Intelligence improves Incident Response (IR) and how to introduce Threat Intelligence into your IR practice - with two use cases from Fox-IT.
Download White Paper
Applying the Threat Intelligence Maturity Model to your organization
This paper provides a framework to assess the maturity of threat intelligence efforts and guide future investments.
Download White Paper
Augment your SOC with human-led threat intelligence
Learn about the limitations of automation in the Security Operations Center. Find out why SOCs should let humans take the lead in handling intelligence. Discover how to achieve the benefits of an integrated, intelligence-led cyber defense capability powered by a Threat Intelligence Platform.
Download White Paper
Azure Sentinel and EclecticIQ Intelligence Center
Together, EclecticIQ Intelligence Center and Azure Sentinel facilitate SOC and CTI teams gaining actionable insights, sharper threat pattern visualizations, and instant situational awareness.
Download Solutions Brief
Beyond the IOC with Cyber Threat Intelligence (CTI)
Indicators of Compromise (IOCs) have their place in cybersecurity, but as cyber threats evolve, they have become ineffective in threat detection. In order to detect the techniques, tactics and procedures (TTPs) of adversaries as well as to fully understand and anticipate threats, we have to go Beyond the IOC with structured intelligence.
Download White Paper
Building a Threat Intelligence Practice
How to make threat intelligence relevant to executives, business stakeholders, security operations and incident responders.
Download White Paper
CTI Collaboration Using STIX and Elasticsearch
In this talk we explore the concepts that underpin true intelligence collaboration and describe a means to achieve it using STIX and elasticsearch.
Watch Recording
CTI-Powered Cyber Security Operations
EclecticIQ and Kaspersky came together to present a Webinar for Practitioners, by Practitioners. We demonstrated the benefits of a security operation center (SOC) powered by cyber threat intelligence (CTI)—and we’re proving our findings with live demos.
Watch Recording
EclecticIQ Curated Feeds
With curated and optimized Open Sources and Commercial Sources feeds from EclecticIQ, your CTI team will overcome feed marketplace overload, jumpstart their CTI operations, and expand their threat landscape visibility.
Download Product Description
EclecticIQ Endpoint Response for Incident Responders
Turbocharge your IR practice with a cost-friendly offering that includes generous initial rollout allowances, rapid deployment and assessment capabilities, and built-in response capabilities to minimize time to remediation.
Download Product Description
EclecticIQ Endpoint Response for MSSPs
EclecticIQ helps MSSPs succeed with a single lightweight agent that provides both extensive multi-OS data collection and analysis as well as comprehensive response capabilities – all with lower CapEx and OpEx outlays than traditional EDR tools.
Download Product Description
EclecticIQ Intelligence Center
EclecticIQ Intelligence Center is the only threat intelligence solution that unites machine-powered threat data processing and dissemination with human-led data analysis without compromising analyst control, freedom, or flexibility.
Download Product Description
EclecticIQ Platform and Packages
Introducing EclecticIQ Platform for intelligence, hunting, and delivering threat intelligence automation and collaboration, forensic-depth endpoint visibility, and threat detection and response.
Download Product Description
EclecticIQ Threat Intelligence Consultants
Leverage Threat Intelligence Consultants to supercharge your threat intelligence operations and optimize your EclecticIQ Intelligence Center.
Download Product Description
Flashpoint and EclecticIQ Intelligence Center
EclecticIQ Intelligence Center now integrates Flashpoint’s trusted actionable intelligence to provide CTI and SOC analysts with the insights they need to make better decisions, respond sooner, and move faster.
Download Solutions Brief
Gartner Market Guide for Security Threat Intelligence Products
The 2019 'Gartner Market Guide to Security Intelligence Products and Services' by Craig Lawson, Ryan Benson, and Ruggero Contu.
Download Analyst Report
Group-IB and EclecticIQ Intelligence Center
As the analyst-centric TIP, EclecticIQ Intelligence Center now provides unparalleled visibility and insights into the threat landscape by integrating the widest range of Group-IB Intelligence data. This data comes from closed sources, real-life investigations, joint ops with law enforcement, and a global technology grid to dive deep into tactics, techniques, and procedures (TTPs).
Download Solutions Brief
How to Leverage CTI to Defend From Ransomware
How CTI can be leveraged in practical terms from a tactic and a strategic point of view.
Watch Recording
How to overcome the Threat Intelligence Cycle Paralysis?
Demonstration on how to overcome threat intelligence paralysis by using a ransomware campaign and botnet threat, by providing context through their relationships with each other and additional threats.
Watch Recording
Intel 471 and EclecticIQ Intelligence Center
EclecticIQ and Intel 471’s combined solution helps organizations dig deep to detect and prevent cyber underground threats. Threat intelligence teams can master their threat landscape by integrating Intel 471’s cybercrime intelligence with EclecticIQ Intelligence Center.
Download Solutions Brief
Kaspersky Intelligence and EclecticIQ Intelligence Center
With EclecticIQ and Kaspersky, organizations can shift their operations to proactive threat management by speeding up CTI operations as analysts identify the most critical threats faster, take timely action sooner and advise the organization on how to respond better.
Download Solutions Brief
Lessons Learned Implementing Intelligence-led Security
We have invited Carol Geyer, Chief Development Officer from OASIS, to discuss how the adoption of STIX and TAXII might transform the CTI practices of organizations. Further, during this webinar we will look at some of the issues that central government and enterprises face, when setting up CTI capabilities.
Watch Recording
Make Sure Your Organization Is Mature Enough for SOAR
Complimentary Analyst Report 'Make Sure Your Organization Is Mature Enough for SOAR' by Gartner.
Download Analyst Report
MISP and EclecticIQ Intelligence Center
By integrating MISP (Malware Information Sharing Platform) into EclecticIQ Intelligence Center, not only do you benefit from MISP’s strong sharing capabilities and extensive community connections, but you also leverage the analyst-centric functionality from EclecticIQ Intelligence Center.
Download Solutions Brief
Narrator: Generating Intelligence Reports from Structured Data
Explore the role of Natural Language Generation (NLG) in the cyber threat intelligence domain.
Watch Recording
Preventing Cybercrime with SOC Augmentation
The Kaspersky and EclecticIQ collaboration on their portfolio of integrations guarantees high-end Cyber Threat Intelligence analysis, empowering organizations to stay ahead of cybercrime. This webinar shows the strength of our combined portfolio and offering, with a product demonstration.
Watch Recording
Ransomware as a Smokescreen for Nation-State Sponsored Espionage Operations
There is a general consensus around the financial motivation behind ransomware campaigns. While this holds true, in this presentation we are going to look into alternative hypotheses where cyber-criminal gangs cooperate with nation states to target victims in order to steal data of value for the nation state sponsoring the operation, hiding the nation state attribution and the espionage motive behind the cyber-criminal gang attribution and financial motive.
Watch Recording
Recorded Future and EclecticIQ Intelligence Center
With EclecticIQ’s integration of Recorded Future, analysts quickly prioritize indicators of compromise (IOCs). Using the Intelligence Center’s graph and advanced search functions, analysts can promptly align these IOCs to tactics, techniques, and procedures (TTPs).
Download Solutions Brief
SANS Cyber Threat Intelligence Survey Report 2020
Download your complimentary copy now
Download Survey Report
Silobreaker and EclecticIQ Intelligence Center
Together, EclecticIQ and Silobreaker help threat intelligence teams integrate structured and unstructured threat data, contextualize unique indicators, and respond faster to impending threats.
Download Solutions Brief
STIX 2.1 - Build your own intelligence
This White Paper introduces STIX 2.1, compares it with the existing STIX 1.2 architecture and shows the future for STIX 2.x.
Download White Paper
The Tradecraft of a Successful Threat Investigation: A COVID-19 Case Study
What does it take to run a successful threat investigation with global implications? Since February 2020, we at EclecticIQ have tracked adversaries as they put their malicious tactics, techniques, and procedures (TTPs) into high gear to take advantage of organizations shifting focus from security to the COVID-19 health crisis.
Download White Paper
Threat Data Ingestion: Get the Best of Both Worlds
Selecting a threat intelligence platform (TIP) is a complex decision that often puts the CTI and the IT Ops teams at odds with each other. The CTI team demands high-fidelity threat data. The IT Ops team requires a TIP with predictable and manageable scalability.
Download White Paper
Time to Soar with EclecticIQ and Splunk
With EclecticIQ Intelligence Center's built-in integration with Splunk Enterprise and Splunk Phantom, your SOC, SOAR, and CTI teams prioritize and accelerate their threat response.
Download Product Description
TIP For CTI Package
The EclecticIQ TIP for CTI package provides central governments and large enterprises with analyst-centric capabilities to move beyond the limitations of open source or homegrown tools and rudimentary TIPs to execute a state-of-the-art, in-house CTI practice.
Download Product Description
TIP For SOC Package
The EclecticIQ TIP for SOC package enables enterprises and government agencies to pivot from a reactive, alert-led operation to a proactive, intelligence-led operation. With this pivot, SOC teams overcome the overwhelming flood of alerts and IOCs to focus on adversary tactics, techniques, and procedures (TTPs).
Download Product Description
Toward a Holistic Cyber Threat Intelligence (CTI) Program
Report by Enterprise Strategy Group (ESG) Jon Oltsik, Senior Principal Analyst on operationalizing Cyber Threat Intelligence through a holistic approach [Aug-2017]
Download Analyst Report
Triage & Collaboration: Improving a major bank's cyber threat security posture
Learn how a major bank implemented a single Threat Intelligence Platform (TIP) to support multiple lines of business across its global footprint.
Download Case Study
Understanding the Ransomware Landscape
This talk consists of 3 main parts: a historical overview of the ransomware phenomenon, how Cyber Threat Intelligence driven security can prevent a ransomware attack by providing the strategic, operational and tactical intelligence, and a description of a worst case scenario resulting from a successful ransomware attack against a targeted victim.
Watch Recording
Using a Robust Platform for Training Purposes
Cyber threat analysts are hard to find, and are being heavily recruited by enterprises and governments. The problem is that threat intelligence has a steep learning curve, even for IT professionals in related fields. That’s why Cyber Threat Intelligence Network (CTIN) advocates a new approach to training cyber threat analysts: Use a Threat Intelligence Platform (TIP) as a hands-on instructional tool.
Download White Paper