Overview

TruStar provides an Intelligence Management technology that aims to break down data silos within and across enterprises to align security effectiveness with business objectives.

Hunters uses Anomali to enhance threat visibility, automate threat processing and detection, and accelerate threat investigation, response, and remediation.
In addition Hunters uses it for it’s Threat Intel detection and investigation pipeline. The Threat Intel pipeline detects IOCs in your raw data from your different data sources, and enriches existing detections containing IOCs.

Supported Data Types

  • TruStar IOCs - Various IOCs collected by TruStar

Sending data to Hunters

Before you can create a dataflow, you’ll need to generate or retrieve your API access key and secret from your account settings page on Station. Then, login into the Hunters Portal, go to the "Data Sources" section in the left side bar, and click the "Add Data Sources" button.

  1. Find and choose TruStar

  2. Insert your API Key and API secret

3. Click the "Test Connection" button at the bottom and when the test is successful, click Apply at the top right corner.