Define threat reports
Define threat reports that describe a threat actor, malware, attack technique, including context and related details.
Before you begin
Role required: sn_ti.admin
Procedure
- Navigate to .
- Click New.
-
Complete the fields in the form as appropriate.
Field Description Name Specify a name to identify the threat report. Published The date that this report has been officially published by the report author. Description A description that provides additional insight and context about the report. Source Specifies the threat source from which this record is created. Source ID Unique identifier for this object in the threat source. Created Time in Source Specifies the time the object is created in the source. Modified Time in Source Specifies the time the object is modified in the source. - Click Submit.
What to do next
Click any of the following related lists to view additional information about objects associated with the threat reports.
| Related Links and Related Lists | Description |
|---|---|
| Show Relationships | Opens the STIX Visualizer where you can view the relationship of the STIX
object. Show Relationships appears only when the object has an associated object. |
| Associated Types | Lists indicator types associated with this object. |
| Reported Objects | List of objects reported in the threat report. |
| Reported Indicators | Lists of indicators reported in the threat report. |
| Reported Observables | Lists of observables reported in the threat report. |