COVID-19 OSINT Community Enclave

Updated 2 weeks ago by TruSTAR

COVID-19 OSINT Community Enclave

In an effort to help security teams Defend Better Together, TruSTAR along with our partners at IBM have created an OSINT Community Enclave on the TruSTAR platform to share and track observables related to COVID-19 exploits.

How can I contribute to this project?

You can find the COVID-19 OSINT Enclave on the “Open Sources” section of the Navigation Panel.

We encourage you to consume this data set via the following tools:

Community & Community Plus Users

All Foundation, Enterprise, and Enterprise Intelligence Management Users

  • Configure your Application integrations with your detection, incident response and orchestration tools to include this data source for enrichment.

Where do I find the COVID-19 OSINT Enclave?

You can find the COVID-19 OSINT Enclave on the “Open Sources” section of the Navigation Panel.

Who can submit reports?

The IBM X-Force IRIS team is leading the effort of curating an initial corpus of relevant observables related to COVID-19 and are publishing them to the COVID-19 Open Source Enclave. Reports will be added every 24 hours.

If you wish to contribute reports to this project contact

Who can edit reports?

TruSTAR and IBM Liaison Community intel architects have edit access to reports. To request edits or report an inaccuracy, contact

What happens when I tag a report with #covid-19?

Reports tagged with #covid-19 will NOT be automatically added to the COVID-19 OSINT Enclave. All reports tagged with #covid-19 can be found using Search and Wildcard features. Note: Tags are only visible to members from the Enclave you submitted to.

Can I tag observables with #covid-19?

No. Only reports can be tagged with #covid-19 at this time.

How long will this OSINT Enclave remain accessible?

This data will be updated and remain available for at least the next 30 days, or for however long this data is deemed valuable to the community.

How do I request credentials?

If you are not already a member of TruSTAR, you can request credentials here:

Who should I contact for support?

Contact for questions or support items.

How Did We Do?