Which team could benefit from a trial of Vulnerability Intelligence?
- Vulnerability Intelligence provides information needed to prioritize patching and remediation of vulnerabilities that are likely to be exploited and proactive alerting on any significant changes to vulnerability risks for critical products. Security operations, vulnerability management, or IT operations teams responsible for vulnerability management use it to direct limited resources by prioritizing vulnerabilities that matter the most.
What do I get access to during the trial?
- Full access to:
-
-
- Information on pre-NVD vulnerabilities
- Detailed Vulnerability Intelligence Cards, including risk scores, triggered risk rules, NVD summary comparison, Insikt Group research, reference count, cyber events involving vulnerabilities, and extensions
- Pre-configured vulnerability alerts for both general awareness and monitoring specific to your Tech Stack Watch List
-
What do I get that’s different from publicly available vulnerability information?
- Vulnerability Intelligence delivers three distinct and unique capabilities:
-
- Comprehensive, timely collection of information about vulnerabilities from open, dark, and technical sources are continuously collected and analyzed so that you have access to newly disclosed vulnerabilities days before they’re published in the NVD or other public databases.
- Transparent risk scoring that assesses vulnerability risk in real-time, taking into account exploitability and temporal factors such as threat actor "chatter", prevalence in malware, and time since reporting. Risk scores are more actionable than CVSS scores or EPSS scores and include the "evidence" for how the score was derived.
- Proactive alerting will alert you to new vulnerabilities that affect your key technologies or when vulnerabilities affecting those technologies have a significant change in risk, helping you know when to prioritize patch and remediation procedures.
Can anyone on my team start a trial?
- Yes, any Recorded Future user in your organization can start a trial from the Vulnerability Intelligence landing page here.
Will I be charged once my trial ends?
- There are no commitments or purchase requirements during or after your trial. Once your trial ends, we’d love to hear your feedback on your experience, but it's at your discretion if and when you want to continue with our sales team to purchase Vulnerability Intelligence.
What integration options are available?
- Integrations are available for common vulnerability management tools, including:
-
- ServiceNow
- Splunk
- NopSec
- Brinqa
Recorded Future also has vulnerability enrichment features in many common automation tools, such as:
-
- XSOAR
- Splunk SOAR
- Swimlane
Finally, custom integration solutions using Vulnerability Intelligence’s robust API can be created to match your workflow needs.
How does Vulnerability Intelligence work with the Recorded Future browser extension?
- The Recorded Future Browser Extension, available for Chrome, Firefox and the Chromium-based Microsoft Edge, can be used to overlay vulnerability risk scoring directly over web-based vulnerability scan results.
How do I . . .
Update products on my Tech Stack Watch List?
- Watch Lists can be updated by CSV import or by individually adding a single product. Make sure to include critical infrastructure products in the list, such as firewalls. For more information on Watch Lists, check out this support article.
Create alerts for the products in my Tech Stack Watch List?
- The Vulnerability Intelligence module includes access to pre-configured alerts for the products in your Tech Stack Watch List in the Intelligence Goals Library. Learn more about the pre-configured alerts in this support article.
Use the browser extension to prioritize vulnerabilities?
- Check out the Vulnerability Prioritization Playbook for step-by-step instructions!