Integrations#
On this page is a list of integrations that allow you to connect EclecticIQ Intelligence Center to vendors’ systems and services.
For documentation on generic transport and content types (e.g. HTTP download, S3), see Generic.
AlienVault#
BFK#
Binary Defense Systems#
Bitdefender#
Censys#
CentralOps#
CIRCL#
CISA#
Cisco#
- Cisco
- Enricher - Cisco ASN Info
- Enricher - Cisco DNS RR History
- Enricher - Cisco Malicious Domains
- Enricher - Cisco Related Domains
- Enricher - Cisco Threat Grid
- Enricher - Cisco Umbrella Threat Grid integration
- Enricher - Cisco Whois
- Incoming feed - Cisco Threat Grid Curated Feed
- Incoming feed - Cisco Threat Grid Samples API
Cofense#
CrowdStrike#
- CrowdStrike
- Enricher - CrowdStrike Enricher
- Enricher - Crowdstrike Vulnerability Intelligence (Related Reports) Enricher
- Enricher - Crowdstrike Vulnerability Intelligence (Related Threat Actors) Enricher
- Incoming feed - Crowdstrike Falcon Intelligence Indicator Feed
- Incoming feed - Crowdstrike Falcon Intelligence Reports Feed
- Incoming feed - Crowdstrike Falcon Intelligence Threat Actor Feed
- Incoming feed - Crowdstrike Falcon Intelligence Yara Rule Feed
- Outgoing feed - Crowdstrike Falcon Custom IOC upload
- Outgoing feed - Crowdstrike Falcon LogScale Outgoing feed
cybercrime-tracker.net#
Cybereason#
Cyfirma#
Digital Shadows#
DomainTools#
Dragos#
DShield#
EclecticIQ#
Elasticsearch#
Exabeam#
Farsight#
Feedly#
Flashpoint#
Forcepoint#
Fox-IT#
GreyNoise#
Group-IB#
- Group-IB
- Incoming feed - Group-IB APT Threat
- Incoming feed - Group-IB Brand Abuse Phishing Kit
- Incoming feed - Group-IB Compromised Data Accounts
- Incoming feed - Group-IB Compromised Data Cards
- Incoming feed - Group-IB Human Intelligence Threat
- Incoming feed - Group-IB Malware C2
- Incoming feed - Group-IB Attacks Phishing
- Incoming feed - Group-IB Phishing Brand Abuse
- Incoming feed - Group-IB Attacks Phishing Kit
- Incoming feed - Group-IB Suspicious IP Socks Proxy
HybridAnalysis#
Infoblox#
Intel 471#
IntSights#
Joe Security#
Kaspersky#
Malware Domains#
Mandiant#
- Mandiant (previously FireEye)
- Enricher - FireEye iSIGHT
- Incoming feed - FireEye iSIGHT Intelligence Report API
- Incoming feed - Mandiant Threat Intelligence Feed v4 (Campaign Feed)
- Incoming feed - Mandiant Threat Intelligence Feed v4 (Indicator Feed)
- Incoming feed - Mandiant Threat Intelligence Feed v4 (Malware Feed)
- Incoming feed - Mandiant Threat Intelligence Feed v4 (Report Feed)
- Incoming feed - Mandiant Threat Intelligence Feed v4 (Threat Actor Feed)
- Incoming feed - Mandiant Threat Intelligence Feed v4 (Vulnerability Feed)