Observables Supported by TruSTAR

Updated 1 week ago by TruSTAR

The TruSTAR platform supports the identification of the following Observables:

Entity

Type

REGISTRY KEY

Observable

IPV6

Observable

CIDR BLOCK

Observable

URL

Observable

MD5

Observable

SHA1

Observable

SHA256

Observable

BITCOIN ADDRESSES

Observable

SOFTWARE

Observable

EMAIL ADDRESS

Observable

PHONE NUMBERS

Observable

DOMAIN

Observable

CVE (based on NIST's CVE standard)

Attribute

MALWARE

Attribute

THREAT ACTOR

Attribute

MITRE ATT&CK

Attribute

Please note that Phone Numbers are not extracted by default and will be need to enabled by your Account Owner on a per Enclave basis.


How Did We Do?