Intelligence feeds provide data in machine consumable format that has a tight integration with SIEM or other orchestration platforms.
Customers have an option to subscribe to any of below technical research feeds depending on their requirements and application:
- Volon’s Customized Intelligence Feeds
- IBM X-Force Feeds
- Both (Volon+IBM)
Our customized feeds provide unique insight to customers about various threat indicators that are observed on highly dynamic sensor network covering the globe. The Botnet monitoring capability adds live feeds of indicators generated from various popular Botnets. These feeds can be consumed by variety of means such as API/XML/CSV or STIX/TAXII. Here is some of the area’s which our feeds cover:
- Phishing URLs
- Phishing Kits
- Malware:.
- Malware Config
- Malware domains
- Malware Binaries
- Bad IP :
- Malware C2
- Ransomware C2
- Bruteforce
- SMTP
- Honeypots (Telnet/SSH/Web/Elasticsearch etc)
- DDOS Botnets
- Banking Botnets
Volon’s strategic partnership with IBM would enable utilization of capabilities of one of most renowned technical dataset curated by IBM Research, customers also have option to integrate X-Force feeds in to their environment. Following are the core features of the dataset which can be integrated up via X-Force Exchange based delivery.
- Comprehensive database lookup of known security vulnerabilities
- Anonymized threat information from monitoring billions of security events daily
- Real-time global threat intelligence from millions of endpoints
- Data based on threat monitoring of billions of web pages and images
- Deep intelligence on millions of spam and phishing attacks
- Reputation data with thousands of malicious IP addresses
- Millions of malware samples backed by a behaviour-based sandbox with a continuous flow of new user-contributed samples