Today we have released two major new features in Open Threat Exchange (OTX). For those of you who have not yet signed up – OTX is an open community that allows you to get updates related to the latest threats as well as collaborate with other security professionals to research and report activity you observe in your environments. AlienVault USM customers automatically receive the threat intelligence of OTX through the USM console, enabling rapid detection of the latest threats. We hope that the new features today open up a whole new way for you to participate and benefit from OTX.
Embedded Pulses – on any pulse you can now select ‘Embed’ to generate a java script snippet to embed the pulse on your website or blog. This will allow your readers to easily download the included IOCs in CSV format. If they are OTX users and logged in they will also be able to subscribe or download in OpenIOC or STIX format. We hope this helps you provide a new way for your visitors to interact with the research you publish or provide you a new way to point visitors to OTX with a little more visibility.
Expanded API – we have greatly expanded the functionality exposed through the API. With this release, you will now be able to create a pulse, search for pulses and indicators, get the details of an indicator as well as some additional functionality. (Pulses are collections of indicators of compromise related to a specific threat). Our SDKs are all updated to support these new functions – we look forward to seeing what you build! https://otx.alienvault.com/api
We are excited to introduce this functionality and hope it is useful – as always please let us know if you have any ideas/comments/suggestions at [email protected].