Home
Solution
Technology
Partners
About us
Contact

More intelligence.
Less confusion.

E2 - Everything Everywhere

Imagine a database that ingests over 760 unique threat information sources and feeds in real-time; knowledge as it happens!

It has the ability to see

  • the latest and greatest intelligence as it is created
  • multiple sources for enrichments
  • outdated and benign threats
  • threat duplication and overlaps
  • emerging threats
  • and a multiplicity of insights.

This unparalleled visibility is a core foundational technology that is required to cross-compare and correlate CTI to establish efficacy measurements and an individualized curation of a CTI portfolio. This convergence of real-time knowledge is the next logical step in threat intelligence and fundamental to our offering. The statistics are a real-time display of our visibility that powers our curation capabilities.

Click here for a current list of threat feeds* – if you don't see one that your company is already using, simply provide us the license key* to do the analytics.

* Sign up required

989K

New IOCs (last 24h)

04/15 04/17 04/19 04/21 04/23 04/25 04/27

14 days trend

1.4B

Processed IOCs (last 24h)

04/15 04/17 04/19 04/21 04/23 04/25 04/27

14 days trend

769

Distinct Sources

04/15 04/17 04/19 04/21 04/23 04/25 04/27

14 days trend

6%

Noise in Signals

04/15 04/17 04/19 04/21 04/23 04/25 04/27

14 days trend

Emerging Threats
Last Added Sources
Crypto Baddies-Collection
Gi7w0rm
Financial Fraud
MD
FAKEUPDATE-Compromised Websites (2024-04-26)
Gi7w0rm
Malware
TXT
Indicators from Unit42 Public Reports-Threat Brief: Operation MidnightEclipse, Post-Exploitation Activity Related to CVE-2024-3400
Palo Alto Unit42 Threat Intelligence team
Vulnerability Scanners
STIX
CISA Cybersecurity Advisory-AA24-109A #StopRansomware: Akira Ransomware
Cybersecurity and Infrastructure Security Agency (CISA)
Ransomware
STIX
HarfangLab (Inside The Lab)-MuddyWater campaign abusing Atera Agents
HarfangLab
Malware
CSV
Indicators from Unit42 Public Reports-2024-04-18 SSLoad infection with Cobalt Strike
Palo Alto Unit42 Threat Intelligence team
Malware
STIX
Indicators from Unit42 Public Reports-2024-04-17 (Wednesday): TA578 pushes SSLoad Malware
Palo Alto Unit42 Threat Intelligence team
Malware
STIX
Cisco Talos IOC data-OfflRouter virus causes Ukrainian users to upload confidential documents to VirusTotal
Cisco Talos
Malware
STIX
Cisco Talos IOC data-Large-scale brute-force activity targeting VPNs, SSH services with commonly used login credentials
Cisco Talos
Vulnerability Scanners
TXT
HarfangLab-Analysis of the APT31 indictment
HarfangLab
Malware
CSV

A multi-tenant solution, ticura improves ROI for everyone

In real-time, Ticura collects threat intelligence from more than 760 free and commercial sources. Then leveraging its proprietary engine, data science, and machine learning we enrich, normalize, and categorize the data to compare with your CTI and security event logs to recommend an optimal combination of CTI.

Ticura then seamlessly delivers the optimal CTI sources to your security infrastructure with continuous feedback and refinement.

Real-time prioritization by measuring the relative effectiveness of individual threat intelligence sources removes the need for analysts to choose which data sources are important or not and enables you to eliminate costs associated with redundant or ineffective feeds.

With Ticura:

  • Confidently select the optimal set of threat feeds and eliminate superfluous subscription fees.
  • Minimize false positives alerts and free up resources to proactively protect against evolving threats.
  • Significantly expand your global intelligence footprint while focusing on alerts that matter.
  • No training, overhead or changes to your application environment required.

More Signal. Less Noise.

The ticura solution is continuously conducting real-time analysis of more than 1.5 Billion IOCs per day from more than 760 sources to validate and assess the accuracy and validity of the indicators.

By applying numerous methods like DNS Analytics, Internet Rank Analytics, Whois lookups and many more indicators are now assigned to categories like CDN, ISP, known sinkholes, parking or offline domains, which enables the easiest, most effective, industry leading false positive prevention perspective.

With these insights ticura allows clients to possess a distinctive advantage as it relates to interpreting and consuming CTI inputs. This processing enables a near real-time consumption of the information to identify the most recent and late-breaking changes to the global IOC environment with a 4% change each cycle, and additionally results in roughly 1 Million new, first-seen, IOCs per day.

Single pane of glass management and insight.

With continuous research, enrichment, normalization, and aggregation of all information sources in the recommended portfolio we provide a single pane of glass for the research of analysts, threat hunters and incident responders.

Put an end to the hassle of working with a multitude of portals from different vendors. No more working with islands of intelligence.

Seamless integration into existing infrastructure

  • Dynamic, global repository

    760 sources today, continuously growing

  • Lossless normalization

    Continuously monitored and improved

  • Correlation, Deduplication

    Lossless across all sources, preserving metainfo for full insights

  • Enrichment

    Continuously growing from 100s of sources and methods

  • Dynamic Categorization

    Based on ML, features and rules

  • Measure relevance and efficiency

    All sources, based on customer preferences, events

  • Curate optimal source set

    Based on efficiency and relevance

  • Intelligent False Alert Prevention

    Category based, customizable, optimized

  • Optimized Export

    Optimized format for each customer

  • Existing Infrastructure

    Optimized for insights, integrate with nearly no effort