EclecticIQ helps Cisco Security customers detect new threats
EclecticIQ enables intelligence-powered cybersecurity for government organizations and commercial enterprises. We develop analyst-centric products and services that align our clients' cybersecurity focus with their threat reality. The result is intelligence-led security, improved detection and prevention, and cost-efficient security investments. Our solutions are built specifically for analysts across all intelligence-led security practices such as threat investigation, and threat hunting, as well as incident response efforts. And we tightly integrated our solutions with our customers' IT security controls and systems EclecticIQ operates globally with offices in Europe, United Kingdom, and North America, and via certified value-add partners.
Secure Firewall: EclecticIQ is a Threat Intelligence Platform that integrates with Malware Analytics as an Incoming Feed (STIX). Queries Malware Analytics for data enrichment.
Umbrella: The Cisco Investigate API helps analysts quickly understand registration details, similar domains, and potential malicious ties to observable data. With this integration, analysts can quickly discern threats and attribution intelligence from observables used in active campaigns as the cloud-based enricher provides information relating domains, IP addresses and file hashes. Combining this integration with EclecticIQ Platform enables analysts to dynamically build a repository of intelligence relating to domain activity.