IOFA Exports is a feature of the Data Exports module that Enterprise customers can use to view all of the IOFA feed data available to them in one place. All IOFA indicators, including any newly added feeds, are available from a single endpoint.
Customers use IOFA Exports to:
- Consolidate Threat Data: Retrieve all IOFA-based threat indicators in one download, instead of accessing multiple feeds.
- Automated Updates: Automate IOFA exports to continuously receive the latest indicators without manually retrieving them.
To export IOFAs, customers use an API endpoint that provides access to IOFA indicators for three hours after the time of generation. You can also embed data into a third-party tool in the following formats:
- Python
- cURL
- PHP
Remember! Before you're able to view and use IOFA threat intelligence data, you must have an API Key. For more information about generating an API Key, go to our knowledge base article.
View your IOFA Exports
- From the home page, select the menu icon.
- Select Data Exports.
- Select IOFA Exports.
Overview
Use the following table to learn what information is accessible from IOFA Exports:
| Information Type | Description |
|---|---|
| Name | Name of the feed |
| Observable | Total amount of observables that are in the feed |
| Observable Type | Type of observables that are in the feed. For example, IOFAs or IOCs |
| Resource Type | Type of creation of the feed (Manual, URL) |
| Vendor | The name of the owner of the feed |
| Description | Description that the creator of the feed adds when saving the feed |
| Tags | Tags and labels that are assigned to the indicator to provide additional context |