Collective Intelligence

The Maltiverse platform proposes a new model of IoC collection that unifies traditional feeds with contributions from the cybersecurity research community.

For this, users have the possibility of creating teams associated with organizations such as CERTs or groups of researchers to upload and rate indicators. This activity can be managed through a web portal or API.

A new IoC share model


The Maltiverse platform proposes a new model of collection of indicators that unifies traditional sources with contributions from the cybersecurity research community. This activity can be managed through a web portal or a REST API.

From the web client

Sharing indicators of compromise from the web client requires to belong to a Team where the logged user has a Team Researcher role assigned. The Upload indicators menú shows up a dynamic form to upload and tag the information in a proper way:

Step One

Captura de pantalla 2018-07-05 a las 20.09.07
You can paste a text containing IP's, hostnames and URL's

Step 2

Captura de pantalla 2018-07-05 a las 20.10.56
Complete information related to the threat you want to describe. In order to homogenize the data set, the application will show you up existing descriptions and tags that you may use to describe data.

Step 3

Captura de pantalla 2018-07-05 a las 20.11.16
Review the information tagged and bulk upload the indicators clicking on Publish Indicators.

From the REST API

The platform has a REST API both for consulting and for inserting observables. We have written a lib for Python that allows the use of this API in a very simple way.
github.logo