Use EclecticIQ Intelligence Center

General

• Navigate your Intelligence Center.

• Unburden yourself with powerful AI features.

• Simplify your processes with our command palette.

Intelligence objects

Learn about EclecticIQ’s STIX-congruent:

• Entities

• Observables

and EclecticIQ’s JSON datamapping, which underlies the Entities and Observables in the Intelligence Center.

Ingest or Create

• Ingest intelligence through incoming feeds.

• Create new intelligence with production.

Additionally, set data policies to ensure your Intelligence Center is regularly decluttered and compliant with data warehousing regulations, such as GDPR.

Metadata

Apply metadata to your intelligence with:

• TLP: a tier-based access protocol.

• Relations: connections between intelligence objects.

• MITRE ATT&CK classifications: identifiers of intelligence as part of adversarial techniques and tactics.

• Tags: labels for quick filtering of intelligence objects.

Organize

Organize your intelligence in:

• Dashboards

• Datasets

• Workspaces

• Taxonomy

• Knowledge packs

Analysis

Analyze your intelligence with:

• Enrichment, adding contextual information to your intelligence.

• Discovery, setting rules to be made aware of the most pertinent intelligence in your Intelligence Center.

• Graphs, visualizing networks of related intelligence objects.

• Heat maps, analyze the relative occurance of MITRE ATT&CK classifications in a subset of Entities.

• Outgoing feeds, exporting curated and processed intelligence to other elements of your security infrastructure.

• Rules, governing the above listed processes.

Reflect analysis in Notes & Reports

You can create Note and Report entities to capture the conclusions you draw as you analyze your intelligence.

Deprecated since version 3.6.0: The Exposure feature will be sunset in the upcoming 3.6.0 release.