Threat Check

Problem: Your team receives thousands of alerts every day, but most IOCs arrive too late. By the time a malicious domain or IP appears in your SIEM, attackers have already used it. You need to know which indicators are dangerous right now — and which ones will become dangerous tomorrow.

Silent Push Solution: Threat Check is your daily threat validation command center. It combines bulk on-demand lookups, powerful analytics, and preemptive intelligence so you can instantly assess any domain, IP, or observable against real Indicators of Future Attack (IOFA™) and Traffic Origin data.

How to Access Threat Check

From the dashboard, click Threat Check under the Defend With Intelligence section.

You’ll land on the Analytics tab, which gives you an immediate overview of your organization’s threat validation activity.

What You’ll See on the Analytics Tab

1. Top 5 IOFA Feeds

A live bar chart highlighting the most active malicious infrastructure being tracked. In the example above, Bulletproof Hosting IPs lead with 1,703 entries — giving you instant visibility into the highest-risk categories.

Graph showing top five IOFA feeds with Bulletproof Hosting IPs leading significantly.

2. Preemptive Advantage

This is the most powerful chart in Threat Check.

It shows how many days ahead Silent Push detected each threat compared to traditional feeds.
Average Preemptive Time: 291.71 days in the current view.

Green spikes represent massive early warnings — sometimes nearly a full year before the infrastructure was used in attacks.

Graph showing preemptive advantage over time with average preemptive time indicated.

3. Requests Over Time + IOFA Detection Percentage

Track your team’s daily usage and success rate. The donut chart shows that **13.77%** of all lookups in this period returned actionable IOFA intelligence — a significant advantage over traditional threat feeds.

Graph showing requests over time with total requests and percentage of IOFA data.

4. Indicator Type & Usage Per Access Key

See exactly what your team is investigating (IPs vs Hostnames) and which access keys are driving the most value.

Graph showing IOFA detection percentage and indicator types with usage per access key.

Other Tabs: Manual & Automate

Manual Tab

Use this for quick bulk lookups. Paste hundreds of domains or IPs and get enriched results with risk scores, IOFA classification, and pivots in seconds.

Interface for Threat Check with access key and data source options displayed.

Automate Tab

Configure automated workflows, scheduled checks, and API-driven enrichment directly from Threat Check.

Access Keys management interface displaying key details and automation instructions for users.

Real-World Use Cases

Daily SOC Validation: Upload your latest suspicious list from the SIEM. Threat Check instantly flags which ones are already part of active IOFA feeds and how many days early we caught them.

Incident Response: During an active investigation, paste suspected command-and-control domains or phishing IPs to see their full history and connected infrastructure.

Proactive Hunting: Security analysts regularly scan newly acquired systems, vendor domains, and emerging campaign indicators to block threats before they reach employees.

Customer Story: A global financial services company runs every inbound alert through Threat Check. In one month, they prevented 47 phishing campaigns by blocking infrastructure that had an average 312-day preemptive advantage.

Tips
Use the Total View and Lookup PADNS buttons in the top right for deeper single-indicator analysis.
Export data at any time for tickets, briefings, or SIEM ingestion.
Combine Threat Check with Monitored Queries in Reconnaissance for continuous protection.