Related

Palo Alto Networks and Recorded Future

Palo Alto Networks, Inc. is a global cybersecurity provider with a vision of a world where each day is safer and more secure than the one before.

Challenges Overcome Through Integration

In today’s environment, organizations need security tools that provide great protection against emerging threats, integrate with each other seamlessly, and make security analysts more efficient and capable. With our integrated solutions, clients get

  • Real-time threat intelligence from the entire web — open, deep, and dark — enabling customers of Palo Alto Networks to benefit from protection rules and actions that can be taken quickly and confidently.
  • Instant context around an IOC with easy-to-read intelligence cards, giving security operations all relevant information in a consolidated view when reviewing new alerts.
  • Evidence-based risk scores for indicators, enabling security operations teams to make faster verdicts.

Integration Description

Palo Alto Networks products are enhanced and provide even greater security benefits when powered by Recorded Future Threat Intelligence. Conversely, network and malware signals passing through Palo Alto Networks products can be useful for analysis when conducting threat research. Consequently we have several integration points:

CORTEX XSOAR – Recorded Future Threat Intelligence can be used to enable and enhance practical and powerful playbooks in this industry leading SOAR tool.

Recorded Future Feeds for XSOAR – Utilize Recorded Future risk lists to enhance threat detection and enable IP and domain specific traffic blocking at the perimeter.

CORTEX LOOKUP APP – Find out immediately if the IOCs you are researching in Recorded Future have been observed in your network with this utility that searches your Cortex Datalake directly from a Recorded Future Intelligence Card.

AUTOFOCUS INTELLIGENCE CARD EXTENSION – Tap into Autofocus analysis from with the Recorded Future Portal and see Palo Alto Network’s network, endpoint, cloud intel and researcher-curated threat intelligence side by side with Recorded Future’s vast collection of external sources.