Mandiant Digital Threat Monitoring
With digital threat monitoring, Mandiant also offers insights into which company data or secrets are circulating on the open or hidden part of the Internet. This data is processed in context using machine learning. As a result, Mandiant promises relevant, prioritized alerts designed to make the triage process easier. In addition to brand and VIP monitoring, this solution can also monitor partner companies. This can help further secure your supply chain and prevent cross-domain attacks that could bypass existing security controls. Mandiant also offers its monitoring tool as an additional module, which allows users to expand threat intelligence to include darknet monitoring.
OpenCTI
Another open source option for collecting and managing threat intelligence data is OpenCTI. The program was developed by Filigran and can be used as a Docker container, platform-independent. This solution also offers a variety of connectors to other security platforms and software tools to integrate and further enrich the OpenCTI data stream. OpenCTI’s functionality includes role-based access controls for security teams, standardized data models and attribution data that can provide information about where the root of the threat lies. In addition, all types of automation can be implemented with the OpenCTI client for Python, the OpenCTI APIs and a user-friendly framework.
SOCRadar Advanced Dark Web Monitoring
SOCRadar offers various services and tools for security professionals, including a number of free tools. However, for more comprehensive, seamless darknet monitoring, we recommend subscribing to this service. This provides monitoring for personally identifiable information, tracks compromised VIP accounts and provides end-to-end reputation and phishing monitoring. Takedown services are also available through this service but will cost additionally. The scope of the darknet monitoring services depends on the service level booked.
ZeroFox Dark Web Monitoring
This tool from ZeroFox also aims to make darknet risks more easily visible. According to the provider, continuous monitoring of compromised access data, personal data of employees or sensitive intellectual property rights is just the beginning: insights gained from analyzing attack methods are incorporated into defensive measures to better protect users – and warning messages provide timely information about risks for brands. (fm)
This article originally appeared at our sister publication CSOonline.com.
