Recorded Future Real-Time Threat Intelligence with HP ArcSight

Transcription

Recorded Future Real-Time Threat Intelligence with HP ArcSight
DATA SHEET
Recorded Future Real-Time Threat
Intelligence with HP ArcSight
Anticipate and prioritize unknown threats better, with
richer IOC context from the open Web.
Recorded Future + HP
ArcSight Use Cases
Automatically correlate
suspicious network
observables with enhanced
OSINT context from Recorded
Future
Recorded Future continuously collects and analyzes information from
the open Web (OSINT) to produce real-time threat intelligence analytics.
By integrating this content into the HP ArcSight SIEM, you can increase
security by assessing internal network observables in the broader context
of emerging threats, attackers, and technical indicators on the open
Web. Recorded Future combined with ArcSight empowers analysts to
proactively identify, prioritize, and mitigate emerging threats.
Recorded Future analyzes
open Web forums and
sources, alerting you
immediately when threatrelated mentions of your IP
address ranges appear
The Open Web in Real Time
Recorded Future’s patented Web Intelligence Engine mines the Web for IOCs and actor/
vector/target relationships and generates real-time threat intelligence. Recorded Future
harvests, extracts, and calculates trend signals and leading indicators from hundreds of
thousands of open Web sources across multiple, crucial languages.
Enhance Existing Correlation Rules with
Recorded Future OSINT Context
Technical indicators discovered and analyzed by
Recorded Future are automatically correlated with data in
ArcSight to provide analysts richer OSINT context. When
a correlated alert is triggered, you can right-click in the
ArcSight console to access the Recorded Future user
interface to gain additional context about the indicator (IP,
hash, domain, etc). For example, if an external IP address
involved in a network event is correlated with Recorded
Future, additional insight from the open Web is readily
available with a drill down.
Recorded Future
threat intelligence
content
Internal network
observables
Correlation
Recorded Future OSINT content correlated in HP ArcSight SIEM.
@RecordedFuture |
www.recordedfuture.com
Real-Time Monitoring and Alerts on IP Ranges
Contact Us
Recorded Future integrates with ArcSight to automatically alert analysts to critical information
found on the Web. For example, these could be threats involving specific IP address ranges
related to the organization.
For more information and a
demonstration, email us at
[email protected].
Recorded Future
HP ArcSight SIEM
Recorded Future
alerts in ArcSight
regarding direct threat
to a customer IP, and
analytic drill down for
a holistic view of the
threat landscape.
About Recorded Future
We arm you with real-time threat intelligence so you can proactively defend your organization against cyber attacks. With billions of indexed facts, and
more added every day, our patented Web Intelligence Engine continuously analyzes the open Web to give you unmatched insight into emerging threats.
Recorded Future helps protect four of the top five companies in the world.
Recorded Future, 363 Highland Avenue, Somerville, MA 02144 USA
|
© Recorded Future, Inc. All rights reserved. All trademarks remain property of their respective owners.
EMAIL US AT
[email protected]