Constant Data Enrichment
Data enrichment combines first party data from internal sources with disparate data from other internal systems or third party data from external sources. IP, URL or DNS Data Feeds make the data more useful by adding value to it regarding real time Incident Response Automation or Security Policy Enforcement.
Pre-defined and Cloud Delivered
Built-in IP ranges for public services like AWS, Office 365, PhishTank with region their purpose allows to automated including feeds into own security policy to allow the communication to necessary targets only.
Uses of IP Addresses, URLs or Domains data feeds filled from external Threat Intelligence, SIEM, IPS, IDS, NDR, EDR, XDR systems for including it as an external dynamic list into security policies to dynamically block recognized attackers and malicious URL or Domains.
Automated export the feeds information to firewall's objects.