Quick navigation

AT&T Cybersecurity - Alienvault

AlienVault Open Threat Exchange from AT&T Cybersecurity

Global open threat intelligence community that enables collaborative defense with actionable, community-powered threat data.

Website

Main categories

Threat & Vulnerability Management

Sub categories

Threat Intelligence Platforms (TIPs)

STIX/TAXII

Threat Intelligence Sharing

Intel sharing platform

Deployment modus

Cloud

Value Proposition

Problem

Threat sharing in the security industry remains mainly ad-hoc and informal, filled with blind spots, frustration, and pitfalls. Our vision is for companies and government agencies to gather and share relevant, timely, and accurate information about new or ongoing cyberattacks and threats as quickly as possible. Armed with this information, organizations of all sizes can avoid major breaches or minimize the damage from an attack.

Solution

AlienVault’s Open Threat Exchange® (OTX™) delivers the first truly open threat intelligence community that makes this vision a reality. AlienVault OTX provides open access to a global community of threat researchers and security professionals. It delivers community-generated threat data, enables collaborative research, and automates the process of updating your security infrastructure with threat data from any source. OTX enables anyone in the security community to actively discuss, research, and share the latest threat data, trends, and techniques, strengthening your defenses while helping others do the same.

Features

Pulses that provide a summary of the threat, a view into the software targeted, and the related indicators of compromise (IOC) that can be used to detect the threat.
IOCs include IP addresses, domain names, file hashes (MD5, SHA1, SHA256, PEHASH, etc), CVE numbers and more
Subscribe to pulses and use the DirectConnect feature to automatically instrument your security products to detect the latest IOCs
Follow OTX contributors and get valuable insight into their recently researched threats
Openly Research & Collaborate on Emerging Threats

Integrate with the AlienVault USM Platform & Export IOCs to Any Security Product
Automatically instrument your built-in IDS capability within the AlienVault USM platform deployments, as well as third party security tools, with the latest actionable threat data from community-generated pulses.
Export IOCs automatically into your existing security tools, eliminating the need to manually add IP addresses, MD5 hashes of malware files, domain names, etc. in the following formats: OpenIoC, STIX, and CSV
Import IOCs from pulses into third party security tools.