TISC Integrations Release version: Washingtondc Updated February 1, 2024 1 minute to readThis section provides instructions for configuring and enabling the Threat Intelligence integrations. Observable EnrichmentThe Enrich Observable WhoIs workflow performs enrichment on selected observables. If the observables are of a type recognized by the WhoisXML API Integration, the observables are enriched.Sighting SearchThis section describes the TISC Sighting Search and Elastic Search integrations.Threat LookupThe Threat Lookup - VirusTotal and CrowdStrike Falcon intelligence workflow performs a lookup on selected observables. If the observables are of a type recognized by VirusTotal and as well as CrowdStrike, the observables are scanned for malware, and the results are returned.Related conceptsThreat Intelligence Security Center CatalogThreat Intelligence FeedsTISC Enrichment IntegrationsTISC API ReferencesTISC Security Tools - EDRTISC - Azure Sentinel integration
TISC Integrations Release version: Washingtondc Updated February 1, 2024 1 minute to readThis section provides instructions for configuring and enabling the Threat Intelligence integrations. Observable EnrichmentThe Enrich Observable WhoIs workflow performs enrichment on selected observables. If the observables are of a type recognized by the WhoisXML API Integration, the observables are enriched.Sighting SearchThis section describes the TISC Sighting Search and Elastic Search integrations.Threat LookupThe Threat Lookup - VirusTotal and CrowdStrike Falcon intelligence workflow performs a lookup on selected observables. If the observables are of a type recognized by VirusTotal and as well as CrowdStrike, the observables are scanned for malware, and the results are returned.Related conceptsThreat Intelligence Security Center CatalogThreat Intelligence FeedsTISC Enrichment IntegrationsTISC API ReferencesTISC Security Tools - EDRTISC - Azure Sentinel integration