Recorded Future logo
Partnership

Automated Threat Intelligence with Tines & Recorded Future

Sign up for free

Together, Recorded Future and Tines combine threat intelligence with powerful automation enabling your team to work smarter and more efficiently. Recorded Future threat intelligence enriches alerts with actionable context through a Tines automation. By the time an alert reaches your team, it includes in-depth information allowing you to respond to the threat faster and with greater confidence.

Key benefits

Eliminate manual aggregation, correlation & triaging

Gain greater context on reported breaches

Accelerate the time to remediation

Use case examples

Example 1

Send an IOC to Recorded Future for Analysis

This Story allows you to send a hash, IP, or domain to Recorded Future and returns a criticality level, summary, score, and link to Recorded Future. This Story corresponds to Recorded Future's SecOps and Threat Intel module.

Example 2

Analyze phishing emails with Recorded Future

Analyze key aspects of phishing emails, including the sender domain, URL, leaked credentials, and any attachments, using enrichment and analysis from Recorded Future. Receive results via email and add them to your case management system if needed.

Example 3

Enrich a list of CVEs using Recorded Future via a form

Enrich a list of CVEs uploaded as a CSV file via a Tines form. For each CVE in the file, retrieve detailed risk analysis data from Recorded Future. A new CSV containing the enriched CVE data is then generated and sent to the recipient. This Story leverages Recorded Future's Vulnerability Intelligence module.

Example 4

Retrieve & enrich IOCs across multiple platforms

Retrieve IOC information from pages and enrich it across multiple platforms. Scan EDR to confirm if the IOC IP address is a local system and contain it if necessary. Return additional IOC information to pages, create tickets in Jira, and notify users via Slack.

Example 5

Fetch rule results from Recorded Future Attack Surface Intelligence & open ServiceNow tickets

This Story automatically fetches results from Recorded Future Attack Surface Intelligence (ASI) module from SecurityTrails Risk Rules. The initial Slack alert will summarize the number of exposed risks by category and provide an option to open ServiceNow tickets. This Story corresponds to Recorded Future's ASI module.

Example 6

Fetch rule results from Recorded Future Attack Surface Intelligence & open Jira tickets

This Story fetches results from Recorded Future's Attack Surface Intelligence (ASI) module from SecurityTrails Risk Rules. The initial Slack alert will summarize the number of exposed risks by category (Informational, Moderate, High) and provide an option to open Jira tickets. This Story corresponds to Recorded Future's ASI module.

An illustration of a chain with two rings

Identify IOCs faster and streamline threat response with Tines and Recorded Future

Sign up for free