The ReversingLabs plug-and-play APIs and Feeds are integrated with Anomali ThreatStream to display file analysis and detailed malware enrichment results instantly, with malware details and context so threat hunters can investigate hashes and understand threat capabilities.
The integration connects with existing SOC Analyst workflows to automate and simplify much of the malware detection and analysis work traditionally done themselves.
For preventive security, threat hunters can use the enriched malware details to automatically feed SIEM, FW, IPS and EDRs for matching incoming files against lists of indicators to find malware instantly or to push found indicators directly to blacklists.
To learn more download our joint partner solution brief and register to set up a demo today.