Team Cymru Insights Feed App

The Team Cymru Insights Feed is a global Internet visibility feed that helps customers identify malicious and suspicious activity faster, and take appropriate action. The Insights Threat Feed, powered by Team Cymru’s Pure Signal™ data ocean, delivers the context and accuracy you needed to prioritize incidents, reduce false positives, and streamline operations. The feed provides over 2000+ contextual tags, spanning categories like malware, botnets, scanners, VPNs, controllers, ORBs + many more. It also offers several other indicators such as PDNS, open ports and geolocation. This Splunk APP collects the data of the Team Cymru Insights Feed using its API, and presents the collected information in the App dashboard. The App enables you to filter on various IOCs collected and set alerts based on specified criteria.

Built by Dan Schoenbaum

Latest Version 1.0.0

March 19, 2025

Compatibility

Not Available

Platform Version: 9.4, 9.3, 9.2, 9.1

Rating

0

(0)

Log in to rate this app

Support

Developer Supported app

Learn more

The Team Cymru Insights Feed is a global Internet visibility feed that helps customers identify malicious and suspicious activity faster, and take appropriate action. The Insights Threat Feed, powered by Team Cymru’s Pure Signal™ data ocean, delivers the context and accuracy you needed to prioritize incidents, reduce false positives, and streamline operations. The feed provides over 2000+ contextual tags, spanning categories like malware, botnets, scanners, VPNs, controllers, ORBs + many more. It also offers several other indicators such as PDNS, open ports and geolocation. This Splunk APP collects the data of the Team Cymru Insights Feed using its API, and presents the collected information in the App dashboard. The App enables you to filter on various IOCs collected and set alerts based on specified criteria.