About Kaspersky Threat Feed App

Kaspersky Threat Feed App is a QRadar application that gives you access to Kaspersky threat intelligence (TI). It provides the following features:

• Search within the feeds database
• Charts that contain information about detections
• Lists of most popular indicators of compromise (IoC) detected by Feed Service
• Information about Feed Service health

  This information is displayed in the Service events table. The KL_ALERT_OutdatedFeed events are marked with the Outdated feed icon ().

• Last 10 events from Feed Service

Some custom event properties are provided together with Kaspersky Threat Feed App. These event properties are the fields of detection events sent by Feed Service.

Page top