Using Phishing Triage with Detection Tools

Updated 5 months ago by TruSTAR

You can connect the Phishing Indicators Enclave in the Phishing Triage Intel Workflow to your detection tools and workflows.

Splunk ES

In the TruSTAR support document for Splunk ES, go to the Creating Inputs to Splunk ES section and follow the steps to connect the Phishing Indicators Enclave to your Splunk ES installation. 

LogRhythm

In the TruSTAR support document for LogRhythm, follow the steps in Configuring the TAXII Client to connect the Phishing Indicators Enclave to your LogRhythm installation.

IBM QRadar

In the TruSTAR support document for IBM QRadar, follow the steps to connect the Phishing Indicators Enclave to your IBM QRadar installation.


How Did We Do?