Quick Contact

OpenThreat Exchange

Because we are Stronger when we Share.

The AlienVault Open Threat Exchange™ (OTX) is a system for sharing threat intelligence among OSSIM users and AlienVault customers. An attack on any member of the community alerts and arms the entire community with the timely intelligence required to better manage a similar attack.

Sharing information related to the source and nature of attacks allows us, as a community, to quickly isolate malicious or compromised hosts. In addition, information related to attack patterns helps identify new attack tools and methods that can feed research on new defense technology.

Data from the broadest range of devices and diverse community of users

OTX is built into OSSIM and the AlienVault Unified Security Management Platform™ (USM). It automatically cleanses, aggregates, validates and publishes threat data streaming in from the broadest range of security devices (firewalls, proxy servers, web servers, anti-virus systems, intrusion detection and prevention systems…) across a community of more than 18,000 OSSIM and AlienVault deployments, spread among many industries and countries, composed of organizations of all sizes – making it the most diverse and comprehensive threat feed possible.

“Internet threats are global by nature and they need to be countered from an equally global perspective. Global reach to information from customers, companies and countries worldwide such as that achieved by the Telefonica-Alienvault partnership for MSSP services can be a powerful enabler for that effective global vision. With the AlienVault Open Threat Exchange, an attack on any part of our network or on any member of the OTX community alerts everybody in the community and helps us all respond to threats far more effectively.”

-Jose Luis Gilperez, Director of Security Product Development & Innovation, Telefonica Digital

Unlike other threat intelligence services that are often based on data from a single type of security device, or are available to only a select set of users, or require a subscription, the AlienVault Open Threat Exchange provides the broadest scope of threat intelligence data, sourced from the largest and most diverse community of SIEM deployments.

Free for all who choose to share

To participate, download the latest OSSIM update, and simply click to opt-into OTX. The system will automatically begin contributing cleansed data and will automatically begin receiving and using threat intelligence from the community. Rest assured that no information related to the layout of your network or configuration of any controls or machines in your network will be leaked. All data is stored anonymously and any performance impact is nominal, as the process to collect & cleanse attack data is run on a periodic basis – not continuously.

Validated by AlienVault Labs

Researchers at AlienVault Labs review and validate threat data to ensure that only the most accurate and actionable intelligence is published. This is the same group of security experts who also recently made headlines around the world when they discovered the new strain of Sykipot malware targeting Department of Defense smart cards. They blog to share their findings, like suspect IP addresses published in the IP Reputation Portal.

Innovation Network Technologies sign up form

Duis aute irure dolor in reprehenderit in voluptate velit esse cillum dolore eu fugiat nulla pariatur excepteur sint occaecat cupidatat non

Innovation Network Technologieslogin form