See it Live: How RiskIQ Host Pairs Confirm the Lazarus Group Attacks
Get vast internet data sets and advanced analytics to hunt digital threats and defend your company’s digital footprint.
Get RiskIQ Community Edition
Malvertising increased 132% in 2016… Download RiskIQ’s 2016 Malvertising Report to see a breakdown of how threat actor methods are trending.
Get the Report
RiskIQ Best Practices Forum – Get the Most Out of Your RiskIQ Investment
Join us in San Diego April 11-13.
The next generation of threat investigation and research
Sign Up for Free
PassiveTotal is already the industry’s leading threat investigation platform, simplifying and accelerating event investigations for analysts and researchers around the world. The newly redesigned platform allows organizations to triage events and investigate incidents faster than ever before. The ever-expanding data provides new context to adversaries’ infrastructure and now includes deeper monitoring capabilities to be alerted to the changing threat landscape. We’re also introducing a new feature, projects, to group related infrastructure for easy reference, collaboration, and hand-offs between analysts or enforcement teams such as legal or brand protection.
Check out our blog series about what’s new in the enhanced PassiveTotal:
What’s New with PassiveTotal: Projects, Timebars, and More
Timebar: The Importance of Time in Threat Analysis and Investigation
Introducing Improved DNS Record Support
PassiveTotal Projects: Investigative Case Management
Guided Tours and More: Educating the Next Generation of Analysts
Don’t Miss a Thing: PassiveTotal Enhanced Monitor Support
Extensive Monitoring and Alerting
Get alerted to real-time changes across all our data sets, including DNS and domain resolution, WHOIS registration, and the appearance of other keywords of interest
We’ve introduced a slick, new UI that keeps critical information at your fingertips. Users can pivot between global data sets faster than ever, as well as refine queries via heatmap, timebar, and facets
Intelligently group related infrastructure into projects, allowing for quick hand-off to other analysts or incident responders. Share projects with colleagues who may be investigating related threats or events