Get Started with Threat Check from Access to Reporting

This guide explains how enterprise customers can request access to Threat Check and configure it in the Silent Push application.

Request Access

1. From the left navigation menu, select Defend > Threat Check.

2. If not enabled, click to request access. This generates a default access key (initially manual, future automation planned).

3. Request up to five access keys, each with a name and description.

In the IOFA Threat Check, hits are overlaid across various app sections to provide context.

Locations of Highlights

• Total View - Highlights Tab: Flags for detected hits on the indicator.

• Total View - Threat Feeds Tab: Overlays hits on Feeds Historical View chart, showing dates and counts.

• Feed Analytics Page: Overlays hits on the Feeds Trend chart.

• Landing Page: Displays average lead times; for non-users, promotes access.

Includes average lead time between first feed sighting and hit detection.

Note: Visual designs are indicative; final overlays highlight dates and frequencies.

Configure Data Sources

1. Once enabled, select available data sources (based on permissions).

2. For IOFA: Simply select the source.

3. For Traffic Origin: Specify the sanctioned countries list.

4. View integration details, including API examples.

Note: Permissions control data source access, enabling future monetization.

Run Threat Check

Enterprise users can run Threat Check directly in the Silent Push application after configuration.

Manual Threat Check

From the left navigation menu, select Defend > Threat Check.

1. Upload a list of indicators or enter them into the form.

2. Select the configured data source(s).

3. Submit to perform the check.

Results will appear on the dashboard, with visuals for data such as Traffic Origin countries.

View and Report Threat Check Results

After running Threat Check, view the results in dedicated dashboards and generate reports.

View Results

1. From the left navigation menu, select Defend > Threat Check.

2. Select a data source for source-specific dashboards.

3. Filter by access key, data source, or time period.

4. View enriched data, visuals (e.g., country maps for Traffic Origin), and metrics like hit dates, feeds, and lead times.

Key Metrics for IOFA

• Hit timestamps and feeds.

• First Seen dates and lead times.

• Summary: Average lead time, impacted feeds, and most frequent indicators/feeds/tags.

• Visuals: Hit timelines and feed highlights.

Generate Reports

1. From the dashboard, download a PDF report.

2. Share within your organization.