---
title: "Threat Check"
slug: "threat-check"
updated: 2026-06-09T03:07:48Z
published: 2026-06-09T03:07:48Z
canonical: "help.silentpush.com/threat-check"
---

> ## Documentation Index
> Fetch the complete documentation index at: https://help.silentpush.com/llms.txt
> Use this file to discover all available pages before exploring further.

# Threat Check

**Problem:** Your team receives thousands of alerts every day, but most IOCs arrive too late. By the time a malicious domain or IP appears in your SIEM, attackers have already used it. You need to know which indicators are dangerous *right now* — and which ones will become dangerous tomorrow.

**Silent Push Solution:** **Threat Check** is your daily threat validation command center. It combines bulk on-demand lookups, powerful analytics, and preemptive intelligence so you can instantly assess any domain, IP, or observable against real Indicators of Future Attack (IOFA™) and Traffic Origin data.

## How to Access Threat Check

From the dashboard, click **Threat Check** under the **Defend With Intelligence** section.

You’ll land on the Analytics tab, which gives you an immediate overview of your organization’s threat validation activity.

## What You’ll See on the Analytics Tab

### 1. Top 5 IOFA Feeds

A live bar chart highlighting the most active malicious infrastructure being tracked. In the example above, **Bulletproof Hosting IPs** lead with 1,703 entries — giving you instant visibility into the highest-risk categories.

![Graph showing top five IOFA feeds with Bulletproof Hosting IPs leading significantly.](https://cdn.document360.io/8e5460b3-9d96-4b01-8bb3-6591a4af3a8c/Images/Documentation/Screenshot 2026-04-23 at 10.43.54 AM.png)

### 2. Preemptive Advantage

This is the most powerful chart in Threat Check.

- It shows **how many days ahead** Silent Push detected each threat compared to traditional feeds.
- **Average Preemptive Time: 291.71 days** in the current view.

Green spikes represent massive early warnings — sometimes nearly a full year before the infrastructure was used in attacks.

![Graph showing preemptive advantage over time with average preemptive time indicated.](https://cdn.document360.io/8e5460b3-9d96-4b01-8bb3-6591a4af3a8c/Images/Documentation/Screenshot 2026-04-23 at 10.44.28 AM.png)

### 3. Requests Over Time + IOFA Detection Percentage

Track your team’s daily usage and success rate. The donut chart shows that **13.77%** of all lookups in this period returned actionable IOFA intelligence — a significant advantage over traditional threat feeds.

![Graph showing requests over time with total requests and percentage of IOFA data.](https://cdn.document360.io/8e5460b3-9d96-4b01-8bb3-6591a4af3a8c/Images/Documentation/Screenshot 2026-04-23 at 10.45.15 AM.png)

### 4. Indicator Type & Usage Per Access Key

See exactly what your team is investigating (IPs vs Hostnames) and which access keys are driving the most value.

![Graph showing IOFA detection percentage and indicator types with usage per access key.](https://cdn.document360.io/8e5460b3-9d96-4b01-8bb3-6591a4af3a8c/Images/Documentation/Screenshot 2026-04-23 at 10.45.55 AM.png)

## Other Tabs: Manual & Automate

### Manual Tab

Use this for quick bulk lookups. Paste hundreds of domains or IPs and get enriched results with risk scores, IOFA classification, and pivots in seconds.

![Interface for Threat Check with access key and data source options displayed.](https://cdn.document360.io/8e5460b3-9d96-4b01-8bb3-6591a4af3a8c/Images/Documentation/Screenshot 2026-04-23 at 10.46.41 AM.png)

### Automate Tab

Configure automated workflows, scheduled checks, and API-driven enrichment directly from Threat Check.

![Access Keys management interface displaying key details and automation instructions for users.](https://cdn.document360.io/8e5460b3-9d96-4b01-8bb3-6591a4af3a8c/Images/Documentation/Screenshot 2026-04-23 at 10.47.20 AM.png)

## Real-World Use Cases

**Daily SOC Validation:** Upload your latest suspicious list from the SIEM. Threat Check instantly flags which ones are already part of active IOFA feeds and how many days early we caught them.

**Incident Response:** During an active investigation, paste suspected command-and-control domains or phishing IPs to see their full history and connected infrastructure.

**Proactive Hunting:** Security analysts regularly scan newly acquired systems, vendor domains, and emerging campaign indicators to block threats before they reach employees.

**Customer Story:** A global financial services company runs every inbound alert through Threat Check. In one month, they prevented 47 phishing campaigns by blocking infrastructure that had an average 312-day preemptive advantage.

> [!NOTE]
> Tips
> 
> - Use the **Total View** and **Lookup PADNS** buttons in the top right for deeper single-indicator analysis.
> - Export data at any time for tickets, briefings, or SIEM ingestion.
> - Combine Threat Check with **Monitored Queries** in Reconnaissance for continuous protection.

###