26 docs tagged with "feed"

Spectra Intelligence Certificate Indicator feeds provide continuous streams of code signing certificates and their signed samples to detect impersonation and compromised certs.

Consume TCF-0601 for a continuous stream of code signing certificates with signed sample hashes, classification filter support, and detection of impersonation attempts.

Spectra Intelligence CVE feeds deliver daily exploit overviews, per-CVE file hashes, hourly and daily new exploit samples detected in the wild.

Consume TCF-0203 for hourly lists of new file hashes containing CVE or exploit identifications detected in Spectra Intelligence; includes first-scan samples only.

Consume TCF-0204 for daily lists of new file hashes containing CVE or exploit identifications detected in Spectra Intelligence; includes first-scan samples only.

Consume TCF-0201 to get a daily overview of CVE identifiers detected in Spectra Intelligence for files exploiting known vulnerabilities collected in the wild.

Consume TCF-0202 for per-day reports on CVE identifiers with associated file hashes, scan counts, SHA1/MD5/SHA256, and threat names from Spectra Intelligence.

Consume TCF-0109 to receive a continuous list of Spectra Intelligence samples showing detection changes between multi-AV scan reports; records retained for 365 days.

Consume TCF-0108 to receive a continuous list of Spectra Intelligence samples that have been scanned for the first time or rescanned; records retained for 365 days.

Spectra Intelligence File Indicator feeds deliver continuous streams of newly detected malware, AV scan results, classification changes, and first-scan file hashes.

Consume TCF-0102-0106 to get platform-filtered malware detections from Spectra Intelligence; separate feeds for Windows, Android, macOS, and other platforms.

Spectra Intelligence Industry Sector feeds deliver early-warning malware samples filtered by category: APT, Financial, Retail, Ransomware, CVE Exploits, and Malware Configuration.

Consume TCF-0401-0406 for early-warning malware samples from Spectra Intelligence filtered by industry category: Financial, Retail, Ransomware, Exploits, APT, and more.

Consume TCF-0101 to receive a continuous stream of new samples with at least one AV scanner detection, including file hashes, file type, and targeted platform.

Spectra Intelligence Network Indicator feeds provide continuous streams of malicious URLs detected in the system, with associated file metadata and threat details.

Consume TCF-0301 for a continuous stream of malicious URLs identified by Spectra Intelligence, including associated file SHA1/SHA256 hashes and threat names.

Consume TCF-0502 for a continuous list of Spectra Intelligence samples whose whitelist status changed from KNOWN to MALICIOUS or SUSPICIOUS, with MD5/SHA1/SHA256 and platform.

Consume TCF-0111 to receive new malicious samples, false positive reclassifications, and threat name changes from the Spectra Intelligence malware presence change events feed.

Spectra Intelligence Supply Chain Security feeds track malicious Open Source Software packages and reclassification events with near-real-time threat intelligence.

Consume TCF-0701 for malicious Open Source Software packages and reclassification events from Spectra Intelligence, with full historical data and approximately 1-hour delay.

Consume TCTF-0001/0002 for curated ransomware IOCs via TAXII 2.1 in STIX format, including ransomware files, C2 infrastructure, and payload download URLs.

Query the Spectra Intelligence Flexible Intel Feed (TCTF-0003) via TAXII 2.1 to receive private STIX 2.1 IOCs scoped to your account's submissions, with OpenCTI integration support.

Spectra Intelligence TAXII feeds deliver curated threat intelligence in STIX 2.1 format via TAXII 2.1, enabling integration with platforms like OpenCTI.

Spectra Intelligence Whitelist File Indicator feeds deliver continuous streams of newly whitelisted known-good files and track changes from known to malicious or suspicious.

Consume TCF-0501 for a continuous stream of newly whitelisted known-good files from Spectra Intelligence; requires trusted source and at least two weeks between scans.

Consume TCF-0107 to receive a continuous stream of file hashes scanned for the first time in Spectra Intelligence; records are retained for 365 days.