DeepSight™ Technical Intelligence

Largest set of threat insights relevant to your organization

Improve the effectiveness of your security infrastructure and teams with real-time visibility and automated access to relevant vulnerability, security risk, and network & file reputation intelligence. Make your security infrastructure smarter, your teams more impactful, and reduce the risk posed by cyber threats to your business.

Download the Data Sheet

DeepSight Intelligence Datafeeds

Export and integrate Symantec's technical intelligence directly into your security and risk management systems (e.g. SIEM, Network Security, GRC, Vulnerability Management, and Security Dashboards) to provide visibility and rapidly respond to emerging and current threats.

The following intelligence datafeeds are available in 12, 24, and 36-month subscriptions:

  • Vulnerability Datafeed
  • Advanced IP Reputation Datafeed
  • Advanced Domain/URL Reputation Datafeed
 Placeholder for edit icon of text proof comp DeepSight Intelligence Datafeeds
Vulnerability Datafeed IP Reputation Datafeed Domain & URL Reputation Datafeed
  • Access to one of the largest Vulnerability Data warehouses in the world
  • Four levels of SCAP references
    • CPE
    • CVE
    • OVAL
    • CVSS(2)
  • Ability to track a vulnerability throughout the threat lifecycle from initial discovery through exploitation to vendor patch
  • IP address activity is analyzed to identify participation in the following:
    • Attacks
    • Malware distribution
    • Phishing scams
    • Spam distribution
    • Bot infections
    • Botnet command and control server communication
  • Hostility and confidence ratings enable customized filtering
  • Domain and full URL analyzed to identify participation in the following:
    • Attacks
    • Malware distribution
    • Phishing scams
    • Spam distribution
    • Bot infections
    • Botnet command and control server communication
  • Hostility and confidence ratings enable customized filtering

Vulnerability Datafeed

Prioritize responsive actions to minimize risk and optimize resource utilization. Get real-time comprehensive coverage on vulnerabilities impacting over 65,000 products from more than 21,000 vendors.

  • Set up a technology list to receive reports on new or updated vulnerabilities for technologies used within your environment
  • Get details on the vulnerability, available patches, and threat information regarding exploitation of the vulnerability in the wild
 Placeholder for edit icon of text proof comp DeepSight Intelligence Datafeeds

Reputation Datafeed

Provide up-to-date and actionable intelligence on IP addresses and Domains/URLs exhibiting malicious activity such as malware distribution and botnet command and control server communication. Reputation scores and contextual attributes allow teams to customize the dataset to better suit security needs.

Reputation Datafeed

DeepSight Intelligence Reputation Feeds

Attributes Includes IP Domain/URL
IP  
Domain  
URL  
Reputation
History
Prevalence, Confidence
Geolocation*
Industry*
Ownership*
Behavior Details

Arm Your Vulnerability Management and Security Operations Teams

Real-time intelligence for faster, more effective action

Vulnerability Management teams can prioritize time and attention on high-impact events with direct visibility into malicious code, security risks and vulnerabilities covering over 65,000 products from more than 21,000 vendors. Customize alerts based on industry internal IT infrastructure, and security policies.

Security Operations and Investigations teams can more quickly detect an active attack and pre-empt an emerging threat with relevant, timely intelligence and a robust portal to further research threats.

Arm Your Vulnerability Management and Security Operations Teams

Automate Intelligence with Integration

On-demand and real-time access to technical intelligence

The DeepSight Intelligence API and DeepSight Intelligence Datafeeds provide integration and support across many security technologies today including datafeed aggregation and enhancement technologies, security applications and technologies such as SIEM, GRC, network security devices, incident response and analysis platforms, and in many tools used by threat intelligence analysts. Partner integrations include but are not limited to: Bivio, Bay Dynamics, Centripetal, Conventus, HP ArcSight, IBM QRadar, LogRhythm, RSA Archer, RSA Security Analytics, Skybox, and Splunk.

Automate Intelligence with Integration

DeepSight Intelligence Partners

More about DeepSight Technical Intelligence

Resources

Additional data sheets, white papers, webcasts, videos and more

Learn More