Platform
Solutions
Partners
Resources

Platform

Discover our unique approach to Intelligence, Automation and Collaboration.

Packages

Discover the variety of pre-configured packages suited for your diverse use cases.

Products

Explore our modular product solutions to better protect your environment.

Services

Get the most out of your EclecticIQ cybersecurity solutions.

Academy

Unlock the full potential of our Threat Intelligence Platform with expert guidance.

Ecosystem

Explore our world-class partners – or learn about our partner program.

TIP for CTI

Power your CTI practice with analyst-centric threat intelligence solutions.

TIP for SOC

Go beyond the IOC to augment your SOC in defense of your organization.

Threat Intelligence

Intelligence Center

Threat Scout

Curated Feeds

Learn how EclecticIQ can help you address your specific challenges – by team and by need – and improve your overall security posture.

Solutions overview

By Team

For CTI Teams

Provide your CTI team with the automation, performance, flexibility, and integrations needed to supercharge their CTI operations with our range of analyst-centric products and services.

For SOC Teams

Enable your SOC team to better operationalize threat intelligence for more effective and efficient incident response with our range of analyst-centric management products and services.

By Need

For Situational Awareness

Improve your situational awareness and mitigate risk with our collection of analyst-centric threat intelligence products and services.

For Collaboration & Dissemination

Operationalize threat intelligence for more effective and efficient incident response with our range of analyst-centric management products and services.

Our Ecosystem

An ecosystem supporting our customers' intelligence-led proactive cybersecurity needs with collaborative partner programs delivering world-class joint solutions.

Partner Program

Partner with EclecticIQ to bring valuable and innovative security solutions and services to end users. Open to all partner types, including technology developers, service providers, resellers, and community.

Become a Partner

Our Partnerships

We partner with the world's premier technology and solution providers to support all phases of your cybersecurity needs. Explore all our partners' solutions and offerings to build and extend your cyber defense ecosystem.

About Our Partners

EclecticIQ Resources

We are committed to increasing the knowledge and capabilities of the cybersecurity community through our research & analysis efforts and open source projects.

CTI Maturity Path Take Action with CTI What is STIX and TAXII?

Browse Resources

Learn more about our technology, solutions and services, and stay updated on the cyber threat landscape with our research reports, webinars and other information.

All resources White Papers Product Descriptions

Open Source Projects

We are proud to be an active member in the open source community and to help develop and advance progress of security technology. Learn more about contributions or go directly to our GitHub page.

Open Source Projects EclecticIQ on GitHub

Platform

Discover our unique approach to Intelligence, Automation and Collaboration.

Packages

Discover the variety of pre-configured packages suited for your diverse use cases.

Products

Explore our modular product solutions to better protect your environment.

Services

Get the most out of your EclecticIQ cybersecurity solutions.

Academy

Unlock the full potential of our Threat Intelligence Platform with expert guidance.

Ecosystem

Explore our world-class partners – or learn about our partner program.

TIP for CTI

Power your CTI practice with analyst-centric threat intelligence solutions.

TIP for SOC

Go beyond the IOC to augment your SOC in defense of your organization.

Threat Intelligence

Intelligence Center

Threat Scout

Curated Feeds

Learn how EclecticIQ can help you address your specific challenges – by team and by need – and improve your overall security posture.

Solutions overview

By Team

For CTI Teams

Provide your CTI team with the automation, performance, flexibility, and integrations needed to supercharge their CTI operations with our range of analyst-centric products and services.

For SOC Teams

Enable your SOC team to better operationalize threat intelligence for more effective and efficient incident response with our range of analyst-centric management products and services.

By Need

For Situational Awareness

Improve your situational awareness and mitigate risk with our collection of analyst-centric threat intelligence products and services.

For Collaboration & Dissemination

Operationalize threat intelligence for more effective and efficient incident response with our range of analyst-centric management products and services.

Our Ecosystem

An ecosystem supporting our customers' intelligence-led proactive cybersecurity needs with collaborative partner programs delivering world-class joint solutions.

Partner Program

Partner with EclecticIQ to bring valuable and innovative security solutions and services to end users. Open to all partner types, including technology developers, service providers, resellers, and community.

Become a Partner

Our Partnerships

We partner with the world's premier technology and solution providers to support all phases of your cybersecurity needs. Explore all our partners' solutions and offerings to build and extend your cyber defense ecosystem.

About Our Partners

EclecticIQ Resources

We are committed to increasing the knowledge and capabilities of the cybersecurity community through our research & analysis efforts and open source projects.

CTI Maturity Path Take Action with CTI What is STIX and TAXII?

Browse Resources

Learn more about our technology, solutions and services, and stay updated on the cyber threat landscape with our research reports, webinars and other information.

All resources White Papers Product Descriptions

Open Source Projects

We are proud to be an active member in the open source community and to help develop and advance progress of security technology. Learn more about contributions or go directly to our GitHub page.

Open Source Projects EclecticIQ on GitHub

Platform

Discover our unique approach to Intelligence, Automation and Collaboration.

Packages

Discover the variety of pre-configured packages suited for your diverse use cases.

Products

Explore our modular product solutions to better protect your environment.

Services

Get the most out of your EclecticIQ cybersecurity solutions.

Academy

Unlock the full potential of our Threat Intelligence Platform with expert guidance.

Ecosystem

Explore our world-class partners – or learn about our partner program.

TIP for CTI

Power your CTI practice with analyst-centric threat intelligence solutions.

TIP for SOC

Go beyond the IOC to augment your SOC in defense of your organization.

Threat Intelligence

Intelligence Center

Threat Scout

Curated Feeds

Learn how EclecticIQ can help you address your specific challenges – by team and by need – and improve your overall security posture.

Solutions overview

By Team

For CTI Teams

Provide your CTI team with the automation, performance, flexibility, and integrations needed to supercharge their CTI operations with our range of analyst-centric products and services.

For SOC Teams

Enable your SOC team to better operationalize threat intelligence for more effective and efficient incident response with our range of analyst-centric management products and services.

By Need

For Situational Awareness

Improve your situational awareness and mitigate risk with our collection of analyst-centric threat intelligence products and services.

For Collaboration & Dissemination

Operationalize threat intelligence for more effective and efficient incident response with our range of analyst-centric management products and services.

Our Ecosystem

An ecosystem supporting our customers' intelligence-led proactive cybersecurity needs with collaborative partner programs delivering world-class joint solutions.

Partner Program

Partner with EclecticIQ to bring valuable and innovative security solutions and services to end users. Open to all partner types, including technology developers, service providers, resellers, and community.

Become a Partner

Our Partnerships

We partner with the world's premier technology and solution providers to support all phases of your cybersecurity needs. Explore all our partners' solutions and offerings to build and extend your cyber defense ecosystem.

About Our Partners

EclecticIQ Resources

We are committed to increasing the knowledge and capabilities of the cybersecurity community through our research & analysis efforts and open source projects.

CTI Maturity Path Take Action with CTI What is STIX and TAXII?

Browse Resources

Learn more about our technology, solutions and services, and stay updated on the cyber threat landscape with our research reports, webinars and other information.

All resources White Papers Product Descriptions

Open Source Projects

We are proud to be an active member in the open source community and to help develop and advance progress of security technology. Learn more about contributions or go directly to our GitHub page.

Open Source Projects EclecticIQ on GitHub

Platform

Discover our unique approach to Intelligence, Automation and Collaboration.

Packages

Discover the variety of pre-configured packages suited for your diverse use cases.

Products

Explore our modular product solutions to better protect your environment.

Services

Get the most out of your EclecticIQ cybersecurity solutions.

Academy

Unlock the full potential of our Threat Intelligence Platform with expert guidance.

Ecosystem

Explore our world-class partners – or learn about our partner program.

TIP for CTI

Power your CTI practice with analyst-centric threat intelligence solutions.

TIP for SOC

Go beyond the IOC to augment your SOC in defense of your organization.

Threat Intelligence

Intelligence Center

Threat Scout

Curated Feeds

Learn how EclecticIQ can help you address your specific challenges – by team and by need – and improve your overall security posture.

Solutions overview

By Team

For CTI Teams

Provide your CTI team with the automation, performance, flexibility, and integrations needed to supercharge their CTI operations with our range of analyst-centric products and services.

For SOC Teams

Enable your SOC team to better operationalize threat intelligence for more effective and efficient incident response with our range of analyst-centric management products and services.

By Need

For Situational Awareness

Improve your situational awareness and mitigate risk with our collection of analyst-centric threat intelligence products and services.

For Collaboration & Dissemination

Operationalize threat intelligence for more effective and efficient incident response with our range of analyst-centric management products and services.

Our Ecosystem

An ecosystem supporting our customers' intelligence-led proactive cybersecurity needs with collaborative partner programs delivering world-class joint solutions.

Partner Program

Partner with EclecticIQ to bring valuable and innovative security solutions and services to end users. Open to all partner types, including technology developers, service providers, resellers, and community.

Become a Partner

Our Partnerships

We partner with the world's premier technology and solution providers to support all phases of your cybersecurity needs. Explore all our partners' solutions and offerings to build and extend your cyber defense ecosystem.

About Our Partners

EclecticIQ Resources

We are committed to increasing the knowledge and capabilities of the cybersecurity community through our research & analysis efforts and open source projects.

CTI Maturity Path Take Action with CTI What is STIX and TAXII?

Browse Resources

Learn more about our technology, solutions and services, and stay updated on the cyber threat landscape with our research reports, webinars and other information.

All resources White Papers Product Descriptions

Open Source Projects

We are proud to be an active member in the open source community and to help develop and advance progress of security technology. Learn more about contributions or go directly to our GitHub page.

Open Source Projects EclecticIQ on GitHub

Browse All Resources

Resources

CTI Collaboration Using STIX and Elasticsearch

In this talk we explore the concepts that underpin true intelligence collaboration and describe a means to achieve it using STIX and elasticsearch.

The combined knowledge of the cyber security and intelligence community is vast and yet many teams still work in splendid isolation. This talk will work through an example, active intrusion set - worked on in separate teams - to show the highs and lows of parallel analysis. We investigate how multiple viewpoints increase intelligence quality but also introduce bias and data complexity - and then show how to solve that with (free) technology.

The method this talk will focus on applies the core concepts of search (elasticsearch), provenance (in a git-like way) and data modelling (purist STIX) to produce a truly global and collaborative threat intelligence repository.

Speaker:

Chris O'Brien, Former Senior Director of Intelligence

Watch Webinar Recording

Please fill in your details below to receive an email that contains a link to download this Webinar Recording.

© 2014 – 2024 EclecticIQ B.V. and its affiliates

EclecticIQ. Intelligence, Automation, Collaboration.

Get demo