Can I download a ready-to-use SIEM connector for Kaspersky Threat Data Feeds?
Yes, you can. We have prepared ready-to-use SIEM connectors (based on Kaspersky Threat Data Feeds) for the following SIEM solutions:
We also offer a Kaspersky CyberTrace tool that can be used to simplify the integration with other SIEM solutions.
Please note that Kaspersky Threat Data Feeds (incl. downloading and managing the Data Feeds) can be supported by a SIEM solution using its in-built capabilities, without Kaspersky CyberTrace, if matching of the Feeds with incoming events is executed inside the SIEM solution. In this case, performance is likely to drop.
Also, please be aware that all SIEM connectors include Demo Data Feeds by default. To purchase a commercial Data Feeds license, please create a request.