AlienVault OTX
The world's largest open threat intelligence community.
Community Members
235,000+
Daily Indicators
20 Million+
Contributing Countries
140+
About AlienVault OTX
AlienVault OTX (Open Threat Exchange) is a globally accessible, community-driven platform for sharing threat intelligence. It aggregates threat data from a community of over 235,000 participants in 140 countries, as well as from the AT&T Alien Labs research team. Users can access detailed information on Indicators of Compromise (IOCs) like malicious IP addresses, domains, file hashes, and CVEs. The platform provides a powerful API that allows for the integration of this threat data into security tools like SIEMs, firewalls, and other systems for automated threat detection and response. It's designed to foster collaboration and provide actionable intelligence to help organizations defend against emerging cyber threats.
Key Features
Global Threat Community
Access and contribute to a global database of threat intelligence from security professionals and researchers.
Indicator Of Compromise (Ioc) Tracking
Search and receive updates on malicious IPs, domains, file hashes (MD5, SHA1, SHA256), and CVEs.
Pulses
Threat summaries that group related IOCs to provide context around specific attacks or campaigns.
Api Integration
A well-documented API allows for seamless integration of OTX threat data into existing security infrastructure.
Direct Integrations
SDKs and integrations for various security tools and platforms are available.
Data Types and API
Indicator Types
IPv4, IPv6, domain, hostname, email, URL, CIDR, FileHash-MD5, FileHash-SHA1, FileHash-SHA256, CVE.
Api Authentication
Requires an 'X-OTX-API-KEY' header for all requests.
Api Output
Data is returned in JSON format.
Community Contributions
The API allows for both retrieving and submitting threat intelligence to the community.