Capabilities

The module consists of three key components:

• Dashboards - provide visualization and analytics for all module processes

• Inventory - the module includes a built-in mechanism for automatic feed inventory from various providers

• Rules - automatic detection of suspicious activity and generation of incidents for response

🗃️ Dashboards

2 items

📄️ Rules

Main task - automatic detection of suspicious activity and generation of incidents for response.

📄️ Inventory

Purpose, structure and interface of feed (IoC) inventory in the Threat Intelligence module.