Not a user yet?
Log in Register for free Suggest a product
Update

Threat intelligence upload API now supports more STIX objects

SentinelSentinel
Microsoft
Update from patrick-devicebaseUpdate from:
patrick-devicebase (expert)

January 2025 Update 3

Threat intelligence upload API now supports more STIX objects
Make the most of your threat intelligence platforms when you connect them to Microsoft Sentinel with the upload API. Now you can ingest more objects than just indicators, reflecting the varied threat intelligence available. The upload API supports the following STIX objects:

  • indicator
  • attack-pattern
  • identity
  • threat-actor
  • relationship
    For more information, see the following articles:
  • Connect your threat intelligence platform with the upload API (Preview)
  • Import threat intelligence to Microsoft Sentinel with the upload API (Preview)

Microsoft Defender Threat Intelligence data connectors now generally
available (GA)
Both premium and standard Microsoft Defender Threat Intelligence data connectors are now generally available (GA) in content hub. For more information, see the following articles:

  • Explore Defender Threat Intelligence licenses
  • Enable the Microsoft Defender Threat Intelligence data connector
Version: January 2025 Update 3 Link
More updatesTo the product
Receive Important Update Messages Stay tuned for upcoming Microsoft Sentinel updates

More from the Apps & Software section

Was the content helpful to you?

Advertisement Advertise here?
Banner Logitech