Certificate feed (TCF-0601)
Spectra Intelligence TCF-0601 provides continuous list of code signing certificates and signed samples
26 docs tagged with "feed"
View all tagsCertificate indicators
Spectra Intelligence certificate feeds track code signing certificates and detect impersonation attempts
CVE and in-the-wild exploits
Spectra Intelligence CVE feeds deliver daily overviews and file hashes for exploits detected in the wild
CVEs exploited in the wild (TCF-0201)
Spectra Intelligence TCF-0201 delivers daily CVE overview for all detected vulnerabilities exploited in wild
Files with detection changes (TCF-0109)
Spectra Intelligence TCF-0109 tracks files showing detection changes between multi-AV scan reports
Flexible Intel Feed API - Networking Indicators TAXII (TCTF-0003)
API documentation for querying the Flexible Intel Feed via TAXII 2.1
Malicious file indicators
Spectra Intelligence file indicator feeds provide newly detected malware, AV scan results, and classification changes
Malware detection feed (platform-filtered) (TCF-0102-0106)
Spectra Intelligence TCF-0102-0106 provides malware detections filtered by platform (Windows, Android, macOS)
Malware detection feed (TCF-0101)
Spectra Intelligence TCF-0101 provides continuous list of new samples with AV detection present
Malware presence change events feed (TCF-0111)
Spectra Intelligence TCF-0111 tracks new malicious samples, false positives, and threat name changes
Network indicators
Spectra Intelligence network indicator feeds provide continuous streams of malicious URLs with threat details
Network IOCs feed (TCF-0301)
Spectra Intelligence TCF-0301 provides continuous feed of malicious URLs with associated file metadata
New exploit or CVE samples in the wild (daily) (TCF-0204)
Spectra Intelligence TCF-0204 provides daily feed of new exploit and CVE sample hashes from first scans
New exploit or CVE samples in the wild (hourly) (TCF-0203)
Spectra Intelligence TCF-0203 provides hourly feed of new exploit/CVE samples with first scans only
New files (first and rescan) (TCF-0108)
Spectra Intelligence TCF-0108 provides continuous list of files scanned or rescanned in the system
New files (first scan) (TCF-0107)
Spectra Intelligence TCF-0107 provides continuous list of file hashes scanned for the first time
Ransomware Indicators TAXII Feeds (TCTF-0001 + TCTF-0002)
Spectra Intelligence TCTF-0001-0002 delivers curated ransomware IOCs including files, C2, and payload URLs
Reports on CVEs exploited in the wild (TCF-0202)
Spectra Intelligence TCF-0202 provides detailed per-day CVE reports with hashes and threat names
Supply Chain IoC (TCF-0701)
Spectra Intelligence TCF-0701 delivers malicious OSS packages and reclassifications with historical data
Supply Chain Security
Spectra Intelligence supply chain feeds track malicious open source software packages and reclassifications
Targeted and industry-specific file indicators (TCF-0401-0406)
Spectra Intelligence TCF-0401-0406 provides early-warning malware feeds filtered by industry and threat type
Targeted and industry-specific indicators
Spectra Intelligence industry feeds deliver malware samples filtered by APT, financial, ransomware, retail, CVE
TAXII feeds
Spectra Intelligence TAXII feeds deliver threat intelligence in STIX format via TAXII 2.1 protocol
Whitelist file indicators
Spectra Intelligence whitelist feeds provide known-good files and track changes to whitelist status
Whitelisted files (changes) (TCF-0502)
Spectra Intelligence TCF-0502 tracks changes to whitelist status from known-good to malicious/suspicious
Whitelisted files (new) (TCF-0501)
Spectra Intelligence TCF-0501 provides continuous list of newly whitelisted known-good files