Group-IB Threat Intelligence

Group-IB Threat Intelligence (https://www.group-ib.com/products/threat-intelligence/) is a system for analysing and attributing cyberattacks, threat hunting, and protecting network infrastructure based on data relating to adversary tactics, tools and activity. TI combines unique data sources and experience in investigating high-tech crimes and responding to complex multi-stage attacks worldwide. The system stores data on threat actors, domains, IPs, and infrastructures collected over the last 15 years, including those that criminals attempted to wipe out. This application is build for integration of Threat Intelligence with Splunk SIEM to consume TI feeds. To use integration, please make sure you have an active Group-IB Threat Intelligence license access to the interface.

Built by Pavel Shepetina

Latest Version 1.4.4

May 20, 2025

Release notes

Compatibility

Not Available

Platform Version: 9.4, 9.3, 9.2

Rating

0

(0)

Log in to rate this app

Support

Developer Supported app

Learn more

Ranking

#27

in Threat Intel

Group-IB Threat Intelligence (https://www.group-ib.com/products/threat-intelligence/) is a system for analysing and attributing cyberattacks, threat hunting, and protecting network infrastructure based on data relating to adversary tactics, tools and activity. TI combines unique data sources and experience in investigating high-tech crimes and responding to complex multi-stage attacks worldwide. The system stores data on threat actors, domains, IPs, and infrastructures collected over the last 15 years, including those that criminals attempted to wipe out. This application is build for integration of Threat Intelligence with Splunk SIEM to consume TI feeds. To use integration, please make sure you have an active Group-IB Threat Intelligence license access to the interface.