Users can up-vote and comment on specific pulses to assist others in identifying the most important threats. Pulses can be exported as STIX, JSON, OpenloC, MAEC and CSV, and can be used to automatically update local security products. Users can subscribe to a “Pulse,” an analysis of a specific threat, including data on IoC, impact, and the targeted software. Users can share the IP addresses or websites from where attacks originated or look up specific threats to see if anyone has already left such information. In 2015, OTX 2.0 added a social network which enables members to share, discuss and research security threats, including via a real-time threat feed. The data is validated by the OTX platform then stripped of information identifying the participating contributor. Its automated tools cleanse, aggregate, validate and publish data shared by participants. Information sharing covers a wide range of issues related to security, including viruses, malware, intrusion detection and firewalls. The collaborative threat exchange was created partly as a counterweight to criminal hackers successfully working together and sharing information about viruses, malware and other cyber attacks. įounded in 2012, OTX was created and is run by AlienVault (now AT&T Cybersecurity), a developer of commercial and open source solutions to manage cyber attacks. It has more than 180,000 participants in 140 countries who share more than 19 million potential threats daily. Open Threat Exchange (OTX) is a crowd-sourced computer-security platform. Query and browse free threat intelligence from over 19 million threat indicators contributed daily.Crowd-sourced computer-security platform Open Threat Exchange Developer(s)Ĭ/open-threat-exchange.Kindly note that for Pulse lookups, an AlientVault API key is required. These new Transforms in Maltego allow users to harness OTX power for free and query threat intelligence using Maltego. Maltego AlienVault OTX Transforms bring AT&T’s Open Threat Exchange integration to Maltego. The Pulses make it easier to answer questions around a threat such as ‘‘Is my environment exposed to this threat?'', ‘‘Is this relevant to my organization?’’ etc. OTX Pulses provide a summary of the threat, a view into the software targeted, and the related indicators of compromise (IOC) that can be used to detect the threats. Via OTX, more than 100,000 participants from 140 countries contribute over 19 million threat indicators daily. It provides an opportunity to, share the latest information about emerging threats, attack methods, and malicious actors, promoting greater security across the entire community. Open Threat Exchange (OTX) solves this problem by enabling everyone and anyone to create, collaborate, and consume threat data.įounded by AlienVault (now AT&T Cybersecurity), it is the largest open threat intelligence community that’s 100% free, enabling collaborative defense with actionable, community-powered threat data. Subscribers cannot interact with peers or threat researchers on emerging threats, as each recipient is isolated from one another. Traditional threat-sharing model is a one-way communication between researchers/vendors and subscribers.
0 Comments
Leave a Reply. |