Silent Push teams up with ThreatConnect to deliver powerful inbound and outbound integration

ThreatConnect

We’re excited to announce that we have released both an inbound and outbound integration with ThreatConnect. The integration allows users of both platforms to perform 23 actions via a Playbook App across Silent Push enrichment, DNS, and threat intelligence data features.

About ThreatConnect

ThreatConnect is a cybersecurity platform which combines threat intelligence analysis with management, automation, orchestration, knowledge capture, and cyber risk quantification to help security teams operate more efficiently. Threat intelligence operations, also known as TI Ops, enables ThreatConnect customers to easily prioritize and take action on the most dangerous risks to their business.

About the integration

This integration is both inbound and outbound, meaning it can be accessed via a Playbook App on ThreatConnect or via Silent Push by ingesting a custom feed.

Via ThreatConnect

We have partnered with our colleagues at ThreatConnect to produce a Playbook App that provides ThreatConnect users access to Indicators of Future Attack: domain, IP and URL data that explains the relationship between billions of observable data points across the internet. Users are now able to access 23 available actions across several core components of the Silent Push platform, including risk and reputation scoring, PADNS lookup functions, and bulk data feeds. A full list of available actions can be viewed at the bottom of this post.

Via Silent Push

Users of the Silent Push platform can now ingest a feed of indicators from ThreatConnect, by using the ‘Create feed from URL‘ function and entering in your authentication details.

How to get started

We’ve created a short Knowledge Base guide to show you how to install this integration via ThreatConnect or Silent Push. The document also includes a more thorough Installation and Configuration Guide provided by ThreatConnect.

Available actions include: 

  1. Domain Enrichment 
  2. Domain Search 
  3. Domain Typosquatting Search 
  4. Forward PADNS Lookup 
  5. Get ASN Reputation 
  6. Get ASN Reputation History 
  7. Get ASN Takedown Reputation 
  8. Get ASN Takedown Reputation History 
  9. Get Bulk Domain Information 
  10. Get Bulk Domain Risk Score 
  11. Get Bulk IPv4 History Information 
  12. Get Bulk IPv4 Information 
  13. Get Bulk IPv4 Risk Score 
  14. Get Cousin Domains 
  15. Get Nameserver Reputation 
  16. Get Nameserver Reputation History 
  17. Get Sibling Domains 
  18. Get Subnet Reputation 
  19. Get Subnet Reputation History 
  20. IPv4 Enrichment 
  21. Multicondition PADNS Lookup 
  22. Reverse PADNS Lookup 
  23. Advanced Request