TIDE uses highly accurate machine-readable threat intelligence data via a flexible TIDE (Threat Intelligence Data Exchange) to aggregate, curate, and enable distribution of data across a broad range of infrastructure. TIDE enables organizations to ease consumption of threat intelligence from various internal and external sources, and to effectively defend against and quickly respond to cyber threats. TIDE is backed by the Infoblox threat intelligence team that normalizes and refines high-quality threat intelligence data feeds.
TIDE collects and manages curated threat intelligence from internal and external sources in a single platform. It enables security operations to remediate threats more rapidly by sharing normalized TIDE data in real time with third-party security systems such as Palo Alto Networks, SIEM, etc. By leveraging highly accurate machine-readable threat intelligence (MRTI) data to aggregate and selectively distribute data across a broad range of security infrastructure, the end result is a highly refined feed with a very low historical false-positive rate.
This guide applies to the legacy version of TIDE accessible via ActiveTust Platform.
For additional information on Infoblox TIDE, see the following:
- TIDE Prerequisites
- The TIDE User Interface
- The TIDE Home Dashboard and Navigation Menu
- TIDE User Settings and Metric Reports
- TIDE User Management
- TIDE Indicator Search
- Lookalike Domain Search
- TIDE Resources
- TIDE Data Management
- TIDE Threat Classification Guide
- TIDE Alexa Top
- TIDE Default TTLs
- Threat Intelligence Data Exchange
- The TIDE API
- The Data API
- The Admin API
- TIDE and Dossier API Guides
- TIDE Governance Policies and Data Submission
- Threat Indicator Submission
- Searching for Threat Indicators Using the API
- Exporting Threat Indicators in TIDE
- TIDE References
This page has no comments.