The Recorded Future Enrichment Dashboards use the Recorded Future API to fetch all information about an entity, such as IP address or domain.

The different types of Enrichment dashboards may contain the following elements:

• Summary shows a short summary of the collected information.
• The Risk meter graphically displays the current risk score.
• Triggered Risk Rules show the rules that have been triggered.
• 총 참조 수 shows the number of references collected over time.
• Context of up to 15 different category types related to the entity, such as Related Attacker, Related
• 멀웨어 및 관련 기술
• 참조에는 최근 참조와 첫 번째 참조를 보여주는 두 개의 표가 포함되어 있습니다.

The actual elements displayed depend on the type of entity and on the information available. Any elements that do no contain any information will not be displayed.

Dashboard Sections

Summary

The summary shows all the basic information about an entity, such as number of references, criticality, risk score, and dates of the first and last reference.

Threat Research Insikt Group

Any related analyst notes will be listed here.

Triggered Risk Rules

엔티티에 의해 트리거된 위험 규칙이 페이지당 최대 10개 항목과 함께 여기에 표시됩니다. 중요도 열은 중요도(1~5)에 따라 정렬되며 항목의 심각도를 더 잘 보여주기 위해 색상으로 구분되어 있습니다.

총 참조 수

A graphical representation based on the timestamps of the references related to the entity. It can be explored further by marking a smaller time interval with the mouse or using the options in the lower right corner (such as Open in search or Inspect).

Related Entities

관련 엔티티가 포함된 최대 15개의 테이블이 여기에 표시됩니다. 다양한 유형의 관련 엔티티가 있습니다:

• Related Attacker
• Related Target
• Related Actors
• Related Malware
• 관련 취약점
• Related IP Addresses
• Related Domains
• Related Products
• Related Countries
• Related Hashes
• Related Technologies
• 관련 이메일 주소
• Related Attack Vectors
• Related Malware Categories
• Related Operations

표의 모든 항목은 다른 강화 대시보드 또는 기록된 미래 포털의 정보 카드로 추가 정보로 연결됩니다.

참조

This section is made up of two tables which show the first reference and the most recent references of when they were added into the Recorded Future system.

특수 요소

GEOIP and CIDR details

이 표에는 IP 주소와 관련된 등록된 서브넷의 위험 점수 및 지리적 정보가 포함되어 있습니다. 이 표는 위험 점수별로 정렬되어 있으며 IP 주소 강화 대시보드에서만 확인할 수 있습니다.

In Threat Lists

This table displays information of other risk lists which contain the entity. The table is only available in the IP Address Enrichment Dashboard and Domain Enrichment Dashboard.

NVD Summary

This panel shows a summary and related information from the National Vulnerability Database by NIST. It is only available in the Vulnerability Enrichment Dashboard.

Affected Version

This table contains the software and versions which are affected by the vulnerability. It is sorted by software and version number and is only available in the Vulnerability Enrichment Dashboard.

자문, 평가 및 마이그레이션

This section displays links to various documents which contain more information about the vulnerability. The table is only available in the Vulnerability Enrichment Dashboard.

Further Help

"스플렁크용 레코디드 퓨처 앱"은 레코디드 퓨처에서 개발했습니다.

Further information and support can be found on our Support web site: support.recordedfuture.com