Together, Recorded Future and Tines combine threat intelligence with powerful automation enabling your team to work smarter and more efficiently. Recorded Future threat intelligence enriches alerts with actionable context through a Tines automation. By the time an alert reaches your team, it includes in-depth information allowing you to respond to the threat faster and with greater confidence.
Key benefits
Eliminate manual aggregation, correlation & triaging
Gain greater context on reported breaches
Accelerate the time to remediation
Use case examples
Example 1
Send an IOC to Recorded Future for Analysis
This Story allows you to send a hash, IP, or domain to Recorded Future and returns a criticality level, summary, score, and link to Recorded Future. This Story corresponds to Recorded Future's SecOps and Threat Intel module.
Example 2
Analyze phishing emails with Recorded Future
Analyze key aspects of phishing emails, including the sender domain, URL, leaked credentials, and any attachments, using enrichment and analysis from Recorded Future. Receive results via email and add them to your case management system if needed.
Example 3
Enrich a list of CVEs using Recorded Future via a form
Enrich a list of CVEs uploaded as a CSV file via a Tines form. For each CVE in the file, retrieve detailed risk analysis data from Recorded Future. A new CSV containing the enriched CVE data is then generated and sent to the recipient. This Story leverages Recorded Future's Vulnerability Intelligence module.
Example 4
Retrieve & enrich IOCs across multiple platforms
Retrieve IOC information from pages and enrich it across multiple platforms. Scan EDR to confirm if the IOC IP address is a local system and contain it if necessary. Return additional IOC information to pages, create tickets in Jira, and notify users via Slack.
Example 5
Fetch rule results from Recorded Future Attack Surface Intelligence & open ServiceNow tickets
This Story automatically fetches results from Recorded Future Attack Surface Intelligence (ASI) module from SecurityTrails Risk Rules. The initial Slack alert will summarize the number of exposed risks by category and provide an option to open ServiceNow tickets. This Story corresponds to Recorded Future's ASI module.
Example 6
Fetch rule results from Recorded Future Attack Surface Intelligence & open Jira tickets
This Story fetches results from Recorded Future's Attack Surface Intelligence (ASI) module from SecurityTrails Risk Rules. The initial Slack alert will summarize the number of exposed risks by category (Informational, Moderate, High) and provide an option to open Jira tickets. This Story corresponds to Recorded Future's ASI module.
