Reveal(X) Threat Intelligence Sources: Open Threat Exchange, Anomali and SANS


Below is a link to four Threat Intelligence collections they include the following:

  • SANS top 100 Attackers

  • Anomali Limo Taxii Server (Last 90 days)

  • AlienVault Open Threat Exchange (Last 90 and 120 days)

These feeds can be imported via the Admin menu on any Reveal(x) system running 7.3 or higher


Updated - 8/3/18


Here is an updated link:


This is a fantastic threat feed list. I have been using it a lot and it has found a few good things for us.