How can I discover and follow indicators of compromise (IoCs)?

Let’s say you want to search for indicators of compromise (IoCs) related to a specific threat actor or malware. You can use Web Alerts to flag IoCs that match your query, even if the articles are from sources you don’t specifically follow.

The Web Alert shown in the example below will look for IoCs related to the Cobalt Strike malware family, making it easy to find what’s relevant, export it in seconds, and proactively monitor the web for the future IoCs relevant to you. 

Did this answer your question? Thanks for the feedback There was a problem submitting your feedback. Please try again later.