Integrations
External data sources wired into the platform. 21 live and serving the analyst-facing pages now. Items marked optional light up when the operator enables them; they fail soft until then so nothing else breaks.
Preferences
Dark mode
Currently using light theme
Reputation & IOC enrichment6
Multi-engine AV verdicts on hashes, URLs, domains, IPs
Community-reported abuse confidence score per IP
Pulse subscriptions + cross-source IOC enrichment
Internet-background-noise classification (benign scanners vs. targeted activity)
Malware URL distribution feed (abuse.ch)
Recent IOC submissions tagged by malware family (abuse.ch)
Reconnaissance & exposure5
Host-enrichment for exposure scans (ports, banners, CVEs)
Internet-scan host + certificate intelligence
Certificate Transparency log search
Real-time SSL/TLS issuance firehose with keyword highlight
Daily-curated C2 host feed (Mythic / Havoc / MeshAgent / Metasploit)
Malware analysis6
Recent malware samples + hash search (abuse.ch)
Sandbox detonation report search
URL screenshots, DOM analysis, and behavioural verdicts
YARA-rule matches against malware samples (abuse.ch)
Malware family + actor encyclopaedia
Per-actor IOC lists imported from community trail files
Breach & identity2
Breach catalogue + email/domain pwn lookups
Email reputation + breach-source attribution
Social / OSINT firehoses3
70+ cybersec accounts streamed chronologically (cookie-authed)
r/netsec, r/cybersecurity, r/blueteamsec post stream
Public cybersec channel firehose (web preview, no Bot API)
Vulnerability & platform data7
Recent CVE feed with CVSS + CPE enrichment
Known-Exploited Vulnerabilities catalogue
Exploit Prediction Scoring System
High-severity CVE syndication
Active ransomware victim listings + group attribution
Tactics, techniques, sub-techniques + Groups + Software
Adversarial threat landscape for ML/AI systems