COMMERCIAL THREAT DATA
Malware, Ransomware, C2s, Cryptominers, DGAs, DDoS, and More
The Value of Threat Data
Cyber threats are constantly growing in frequency and complexity. Criminals use intricate and customized tactics, techniques and procedures (TTPs) to bypass even the most trusted security controls.
Security professionals tasked with protecting assets against these malicious actors often rely on indicators of compromise (IOCs) from external sources to improve their team’s threat landscape visibility. According to a study conducted by the Ponemon Institute:
- 78% of respondents rate the importance of threat intelligence in achieving a strong cyber security posture as very high.
- 46% percent of respondents believe commercial data feeds provide more actionable intelligence than free sources.
Malware Patrol offers a wide variety of IOC feeds for commercial and research purposes. Our data provides a source of verified and actionable indicators that protect your customers and networks against communications with botnets and command and control (C2) servers, malware infections and the transmission of compromised data.
For ease of use, our feeds are formatted for compatibility with the most common security platforms and software – no API required – and:
– Allow for UNLIMITED downloads
– Contain over 13 years of historical data
– Each indicator is verified daily
– DNS names are resolved 4-6 times a day
– Newly discovered URLs are processed within an hour.
Security Service Provider
MSSP or ISP, you use threat data to provide security management services to your customers.
Threat Researcher/Analyst
You need data or samples for research purposes.
Security Enterprise
You integrate IOCs into your threat intelligence feeds or security products.
Choose the Right Data for Your Needs
We offer two commercial data options:
Business Protect Data Feeds include a package of data designed to help small- to medium-sized businesses, such as MSSPs and ISPs, protect their customers’ networks and end users. The package includes malicious URLs and IP addresses of C2s and DGAs.
Enterprise Data Feeds are feeds for companies that have a mature cybersecurity model and require more specific threat intelligence and/or customization. These feeds can be purchased separately or in bundles, based on your business needs.
BUSINESS PROTECT
- Data
- Free data evaluation & technical consultation
- Unlimited-use commercial license
- Hourly updates
- Historically rich
- Unlimited downloads
- Subscription options: 6 months and 1 year
- Free feed customization/formatting
- Access to the CyberChef tool set
- Support
- Dedicated account manager
- Priority tech support
- Up to 4 hours of implementation assistance
- Feeds
- Includes ONLY the following feeds:
- IPs of C2s and Active DGAs
- Malware URLs (Sanitized)
- RPZ DNS Firewall Zones: Malware URLs
ENTERPRISE
- Data
- Free data evaluation & technical consultation
- Unlimited-use commercial license
- Hourly updates
- Historically rich
- Unlimited downloads
- Subscription options: Annual and multi-year
- Free feed customization/formatting
- Priority tech support
- Access to the CyberChef tool set
- Support
- Dedicated account manager
- Priority tech support
- Up to 4 hours of implementation assistance
- Feeds
- Select the feeds you need:
- Anti-Mining
- Bitcoin Blockchain Strings
- Bitcoin Transactions
- C2 URLs
- Domain Names Generated via DGAs
- Malicious IPs
- Malware Hashes
- Malware Samples
- Malware URLs (Sanitized)
- Malware URLs (Unsanitized, with malware file name and extension)
- Newly Registered Domains
- Real-Time DDoS Attacks
- RPZ DNS Firewall Zones: Malware URLs, C2 URLs, Cryptominer URLs, DGA Domains