View a list of all IoCs across all feeds and collections
    • 23 May 2023
    • 1 Minute to read
    • Dark

    View a list of all IoCs across all feeds and collections

    • Dark

    Article summary

    Silent Push collects an exhaustive list of Indicators of Compromise (IOCs) currently featured in all available feeds and collections, and corroborates the data into one indexed and searchable screen - Threat Ranking.

    To access the Threat Ranking screen, navigate to Threat Intelligence Management > Threat Ranking. Threat data is displayed across 9 categories:

    1. Threat Name - The name of the observable
    2. IOC Type - The observable type (IP, Domain or URL)
    3. Source - The name of the feed providing the IOC
    4. Vendor - The feed owner
    5. Source Score - Harmfulness score from 0 to 100 calculated based on a custom Silent Push algorithm
    6. Enriched Score - Cumulative score incorporating all secondary enriched attributes
    7. Custom Score - Cumulative score incorporating all custom attributes
    8. Total Score - Single metric incorporating the source score, enriched score and source score.

    Basic searching and filtering

    The Threat Ranking screen allows you to search all available observables using text strings, and order the data using custom filtering options.

    1. To search for a specific observable, type its name in the Search Observable Name box

    2. To apply custom filtering options on a per-category basis, click the filter icon next to the category name.

      1. For example, click the filter icon next to the Source Score category name, and use the slider to only search for data with a score of up to and including 0, 25, 50, 75 or 100.
    3. Click the All, Feeds or Collections buttons to only display data contained in feeds, collections, or both

    For more advanced search options that use operators and statements, take a look at this article.

    Was this article helpful?