EclecticIQ Threat Scout

The EclecticIQ Threat Scout browser extension allows you to transform online cyber security information into AI-structured and STIX 2.1 compatible data. You then send this data to your Intelligence Center or export it as CSV.

Requirements

• Threat Scout itself has no requirements.

• If you want to Extract Entities, an OpenAI account and ChatGPT-3.5 tokens are required.
  An OpenAI subscription is not required.

• If you want to Connect to ElecticIQ, an EclecticIQ Intelligence Center license is required.

Install Threat Scout

1. Download Threat Scout from the Mozilla extension store or Chrome Web Store and add the extension to your browser.

2. Select the newly added Threat Scout extension. The setup screen will open.

3. (Optional) Select the Extract Entities and Connect to ElecticIQ checkboxes if desired.
   

4. Select Continue.

   • If you selected Extract Entities, enter your ChatGPT-3.5 API key and select Continue.

   • If you selected Connect to ElecticIQ, enter your Intelligence Center’s URL and API token.

5. Select End setup.

You can now scan webpages for observables and export identified intelligence as CSV.

Benefits of connecting Threat Scout to OpenAI and the Intelligence Center

If you connected Threat Scout to OpenAI, scanning a web page will also identify entities.

If you connected Threat Scout to your Intelligence Center, you can also:

• see contextual information on objects already in the Intelligence Center while reading after scanning a web page.

• exclude intel that is already known from your exports.

• export identified intelligence to the Intelligence Center.

Release Notes

Release notes

See our Release notes page to learn about added features.