Visit their site

Recorded Future

Recorded Future is the world’s largest threat intelligence company. Recorded Future’s Intelligence Cloud provides end-to-end intelligence across adversaries, infrastructure, and targets. Indexing the internet across the open web, dark web, and technical sources, Recorded Future provides real-time visibility into an expanding attack surface and threat landscape, empowering clients to act with speed and confidence to reduce risk and securely drive business forward. Headquartered in Boston with offices and employees around the world, Recorded Future works with over 1,700 businesses and government organizations across more than 75 countries to provide real-time, unbiased and actionable intelligence. Learn more at recordedfuture.com.

Specialties

Products

Integrations

Recorded Future

Threat Intelligence

The Recorded Future Intelligence Engine App for the ThreatConnect TI Ops Platform integrates Record Future’s Threat Intelligence, SecOps, and Vulnerability Intelligence, ingesting Domain, Hash, IP, URL, and Vulnerability Risk Lists, as well as Insikt Group Analyst Notes. Corresponding Objects with select Recorded Future metadata are created in the ThreatConnect Platform.

The Recorded Future Intelligence Engine App is customizable allowing specific threat intelligence to be supplied to the ThreatConnect Platform, for example, any intel with a Risk Score above a specific threshold. The Recorded Future Intelligence Engine user interface (UI) allows you to monitor and manage the Recorded Future integration.

The App can be found in the ThreatConnect App Catalog under Recorded Future Intelligence Engine.

Keep Reading

Related Resources

Built By ThreatConnect

Recorded Future with Polarity

The Polarity - Recorded Future integration searches Recorded Future's vast intelligence system for information pertaining to indicators such as IPs, hashes, cves domains and urls. Enabling analysts to get a complete picture of how an indicator might affect their systems. In addition to threat intelligence, analysts can also search notes and sightings in the Recorded Future platform.

Examples

Indicator Overview

Summary Tags: When searching indicators in Recorded Future analysts can quickly understand the criticality of the indicator, the rules that determined its criticality and the risk score assigned to it.
Criticality Overview: When drilling into the details of the indicator analysts can get a better understanding of the risk score and the criticality of the indicator.
Indicator Information: When drilled in the analysts can also get more in-depth information on the indicator. In this CVE example analysts can quickly understand what the CVE is, its criticality and impact and how exploitable it is. The indicator information will change based on the indicator type that was searched, for example a hash will return different information than the CVE shown.
Risk Evidence: Analysts can also quickly go through all of the evidence that determined the risk score in Recorded Future.
Notes: When drilled into an indicator for Recorded Future an analyst can also see any user driven notes that were added about the indicator to see more information on how the community and their team are enriching the indicators.
Sightings: When drilled into the details on an indicator the analysts can also click on the sightings tab to where the indicator has been sighted on the internet.