PrecisionSec’s Threat Analyst Platform enables SOC analysts, threat hunters and security analysts to quickly investigate technical indicators related to an incident. Backed by our threat intelligence data, the platform lets you pivot between indicators related to one or more pieces of malware to quickly discover additional related infrastructure used by attackers.
High-confidence identification and classification of commodity malware lets you know exactly who you’re up against, so you can de-prioritize mass-distributed malware and low-level crimeware and focus on the threats that matter.
What the platform includes
- High-confidence identification and classification of commodity malware distribution
- Search by malware URL, IP address, malware family and malware hash (MD5/SHA-256)
- Unlimited malware sample downloads
- Quickly pivot between indicators to discover additional related infrastructure
- Malware IP blocklist / search
- All classifications internally verified using custom YARA rules
- Full MISP integration with MISP-format feeds
- REST API access with JSON and CSV download