ThreatStream is the Threat Intelligence Platform built for analysts to create threat intelligence and investigate security incidents.
Collect, contextualize, and risk rank complex, high-volume indicators with machine learning to prioritize alerts and guide security strategy.
•Map threat intelligence to threat models (Actor Profiles, Campaigns, and TTPs)
•Aggregate OSINT, 3rd party, Labs, and ISAC data
•Automate workflows for quicker analyst insights
•Securely share and collaborate threat intelligence with trusted partners
•Integrate with SIEM, FW, Endpoint, IDS, API and more
Threat Intelligence Sharing
Anomali provides a complete threat sharing platform for ISAC and ISAO partners to power secure sharing and collaboration. Partners leverage ThreatStream to offer their members a branded threat sharing portal with community training, education, and an Anomali Analyst license.
• Dedicated Trusted Circle in Anomali
• Admin access to vet and control membership
• STIX/TAXII server for programmatic access
• Industry-specific tactical and operational research from Anomali Threat Analysis Center