Support

Support for business applications

Kaspersky Threat Data Feeds
Kaspersky Threat Data Feeds
Knowledge Base
FAQ Forum Contact support Recovery tools Product videos
 
 

How to integrate Kaspersky Threat Data Feeds with Microsoft Sentinel SIEM

Latest update: July 20, 2022 ID: 15908
 
 
 
 

Microsoft Sentinel is a cloud-native SIEM system which has the possibility to use Threat Intelligence Data Feeds via TAXII protocol.

To integrate Kaspersky Threat Data Feeds with Microsoft Sentinel you need to:

  • Obtain your trial/commercial token for Kaspersky Threat Data Feeds from intelligence@kaspersky.com
  • Configure Microsoft Sentinel 'Threat Intelligence - TAXII' connector
  • Specify selected Kaspersky TAXII collections

You can download the guide here.

 
 
 
 
 
Did you find this article helpful?
What can we do better?
Thank you for your feedback! You're helping us improve.
Thank you for your feedback! You're helping us improve.