Intelligence

The Cisco XDR Intelligence feature provides users the ability to search for stored threat intelligence from the public, as well as your private, threat intelligence stores based on the Cisco Threat Intelligence Model. It includes the judgments, indicators, events, and feeds based on the data that has been extracted from the continuous enrichment of our threat intelligence sources and deemed most relevant to incident response.

As defined by the Center for Internet Security, "cyber threat intelligence is what cyber threat information becomes once it has been collected, evaluated in the context of its source and reliability, and analyzed through rigorous and structured trade-craft techniques by those with substantive expertise and access to all-source information."

Judgments

Choose Intelligence in the navigation menu to view Judgments, Indicators, Events, and Feeds.