Alienvault OTX Pulse
This document explains how to set up and use Alienware OTX Pulse with TruSTAR Station.
Alien Labs® Open Threat Exchange® (OTX™) is the world’s first and largest truly open threat intelligence community of more than 100,000 threat researchers and security professionals in 140 countries. The OTX delivers more than 19 million threat indicators daily.
- Time to Install: 10 minutes
- Type of Feed: Automatic updates
- Update Frequency: 15 minutes
- Intel Type: Premium Feed
Data Types
The integration pulls all observables supported by TruSTAR. from Alienvault OTX.
Requirements
- A subscription to Alienware OTX
- Alienware OTX API Key
Getting Started
- Log into TruSTAR Station
- Click the Marketplace icon on the left side icon list.
- Click Closed Sources.
- Click Subscribe on the Alienware OTX Pulse box.
- Enter your Alienvault API key and click Save Credentials & Request Subscription.
TruSTAR will validate the integration within 48 hours and send an email when the integration has been enabled.
TruSTAR Report Mapping
Field | Explanation |
Report Title | Name field of json response (e.g New Exploit Kit Novidade Found Targeting Home and SOHO Routers) |
External ID | Encoded value of (id) field of json response (e.g encoded value of (5c0f9568e3307b26b191fe84)) |
Report Body | Complete JSON response |
Time Begun | Created field of response (example: 2018-12-07T09:23:11) |
Tags | Tags field of response, if present |
Deeplink | None |
Client Type | PYTHON SDK |
Client Meta Tag | trustash |
Known Issues
No reported issues.
