Constant Data Collection
Data collection combine first party data from internal sources with disparate data from other internal systems or third party data from external sources.
IP, URL or DNS data feeds make the data more useful by adding value to it regarding real time Incident response automation or Security policy enforcement.
How it works?
Pre-defined and Cloud Delivered
Built-in IP ranges for public services like AWS, Office 365, PhishTank with region purpose allows to automated including feeds into own Security policy to allow the communication to necessary targets only.
Uses of IP Addresses, URLs or Domains data feeds filled from external Threat Intelligence, SIEM, IPS, IDS, NDR, EDR, XDR systems for including it as an external dynamic list into Security policies to dynamically block recognized attackers and malicious URL or Domains.
Automated export of the information feeds to the targets (e.g. Firewall's objects).