IBM X-Force Threat Intelligence

Updated 1 year ago by TruSTAR

This document explains how to set up the IBM X-Force® Threat Intelligence premium intelligence source in the TruSTAR platform.

This feed provides organizations with high quality, prioritized, actionable threat intelligence extracted from real-time IBM security operations, investigations and research.

  • Source Type: Premium Intel
  • Update Type: Feed-based
  • Update Frequency: 15 minutes
  • Parser: Yes
  • Time to Install: 10 minutes

Observables Supported

  • IP
  • MD5
  • SHA1
  • SHA256
  • URL


  • A subscription to IBM X-Force IRIS
  • IBM X-Force IRIS API Key
TruSTAR Admin rights are required to activate this Premium Intelligence feed.

Getting Started

  1. Log into the TruSTAR Web App.
  2. Click the Marketplace icon on the left side icon list.
  3. Choose Premium Intel.
  4. Click Subscribe on the IBM X-Force IRIS box.
  5. Enter your IBM X-Force IRIS API key and click Save Credentials & Request Subscription.

TruSTAR will validate the integration within 48 hours and send an email when the integration has been enabled.

Known Issues

No reported issues.

Please contact if you have issues with this integration.

How Did We Do?