Intel 471’s Vulnerability Intelligence is made to both provide relevant and timely intelligence information on the adversary situation and to address the gap in current vulnerability offerings, which focuses mainly on things already being exploited in the wild based on known attacks and open source information. This leaves out the precursors to such activity that lend to a more proactive approach such as an increase in interest levels amongst threat actors, proof-of-concept (POC) code being developed, traded or sold, and ultimately the weaponization and productization of the code as it gets integrated into exploit kits, exploit packs or other tools. This activity often takes place prior to attacks being observed in the wild.
The Intel 471 Vulnerability Intelligence Add-on will automatically ingest vulnerability Intelligence reporting from the Intel 471 Titan platform and make all data available via Splunk searching. The add-on can be used standalone, but is best used alongside the Intel 471 Vulnerability Splunk App that replicates the Titan vulnerability dashboard within Splunk. The app and add-on require an Intel 471 Titan API key. Please contact email@example.com for more information.