Reveal(X) Threat Intelligence Sources: Open Threat Exchange, Anomali and SANS


#1

Below is a link to four Threat Intelligence collections they include the following:

  • SANS top 100 Attackers

  • Anomali Limo Taxii Server (Last 90 days)

  • AlienVault Open Threat Exchange (Last 90 and 120 days)

https://drive.google.com/open?id=1rpmFoLZrQXVyRHCaSd9nMT9X3XsGWTKP

These feeds can be imported via the Admin menu on any Reveal(x) system running 7.3 or higher


#2

Updated - 8/3/18


#3

Here is an updated link: http://goto.extrahop.com/cti


#4

This is a fantastic threat feed list. I have been using it a lot and it has found a few good things for us.