Recorded Future Vulnerability List

Updated 4 days ago by Elvis Hovor

This document provides a description how to set up and use the Recorded Future Vulnerability List with TruSTAR Station.

With billions of indexed facts, and more added every day, Recorded Future’s Threat Intelligence Machine makes use of machine learning and natural language processing (NLP), to continuously analyze threat data from a massive range of sources. 

  • Time to Install: 10 minutes
  • Type of Feed: Automatic updates
  • Update Frequency: Two hours
  • Intel Type: Premium

Data Types

The integration pulls the following information from the Recorded Future Vulnerability List:

  • CVE

Requirements

  • A subscription to Recorded Future Premium
  • Recorded Future API Key
  • A daily quota of 60 Recorded Future credits. Each list update requires 5 credits, for a total of 60 credits per day (12 list updates per day).
TruSTAR Admin rights are required to activate this Premium Intel feed.

Getting Started

  1. Log into TruSTAR Station.
  2. Click the Marketplace icon on the left side icon list.
  3. Choose Closed Source.
  4. Click Subscribe on the Recorded Future Vulnerability List box.
  5. Enter your Recorded Future API key and click Save Credentials & Request Subscription.

TruSTAR will validate the integration within 48 hours and send an email when the integration has been enabled.

Report Mapping

The Recorded Future Vulnerability List contains information about vulnerabilities discovered and rated at 90 and above (on a scale of 0-100) by Recorded Future’s internal team.

Field 

Explanation

Report Title

CVE <IOC Value>

External ID

Encoded value of (​CVE<IOC Value>)

Report Body

Full json response

Time Begun

FirstSeen ​field of response Example: 2010-04-27T12:46:51.000Z

Tags

​criticalityLabel and score ​field of response if available. criticalityLabel of None and score value = 0 are ignored.

Example: ​criticality​Label​: unspecified Score: 5

Deeplink

​IntelCard ​field value of response, if available

Example: https://app.recordedfuture.com/live/sc/entity/idn%3Agoogle.com

Client Type

PYTHON SDK

Client Meta Tag

trustash

FAQ

Use THIS LINK to access a PDF file explaining the Recorded Future API and THIS LINK to explore their API.

Use THIS LINK to access documentation for the TruSTAR API. 

Known Issues

No reported issues.

Please reach out to support@trustar.co if you have issues with this integration.

How Did We Do?