// dashboard
real-time threat intelligence overview
Total IOCs
—
stored in db
Malicious
—
verdict: malicious
Suspicious
—
verdict: suspicious
Enriched
—
with intel sources
Recent high-confidence IOCs
Loading…
Enrichment status
Loading…
RSS automation
Loading…
// threat list
search and browse stored IOCs
| IOC | Type | Threat | Confidence | Verdict | Source | Added | |
|---|---|---|---|---|---|---|---|
| Loading… | |||||||
// ingest IOC
manually add a threat indicator
IOC details
Quick bulk ingest
Extract from blog URL
Output
Ready.
// enrich IOC
query external intel sources for a single indicator
Target
Sources
Bulk enrich
Enrichment result
Enter an IOC and click Enrich
// RSS feeds
manage automated threat intel ingestion sources
Active feeds
Loading…
Add feed
Scan controls
// settings
dynamic configuration — changes apply without redeploy
General
Enrichment
AI model
Scoring
RSS automation
rssIntervalMinutes
How often to scan feeds
min
rssAutoEnrich
Auto-enrich extracted IOCs
rssMaxEnrichPerArticle
Max IOCs enriched per article
Fetch limits
fetchTimeoutMs
ms
rateLimitMs
Delay between requests
ms
maxArticleChars
chars
Enable / disable sources
enrichVT
VirusTotal lookups
enrichAbuseIPDB
AbuseIPDB lookups
enrichShodan
Shodan InternetDB
enrichOTX
AlienVault OTX
enrichGeo
ip-api.com geolocation
enrichPassiveDNS
RDAP passive DNS
AI classification model
Risk score weights
weightVT
weightAbuseIPDB
weightOTX
weightShodan
Verdict thresholds
verdictMaliciousAt
Score ≥ this → malicious
verdictSuspiciousAt
Score ≥ this → suspicious