Glossary

CTI (Cyber Threat Intelligence)

Definition: CTI (Cyber Threat Intelligence)

CTI is based on multiple kinds of sources like open source intelligence, social media intelligence, human intelligence, technical intelligence or even intelligence taken out of the deep or dark web.

Learn more about XDR/ CTI

XDR/ CTI is an internal component that is part of the TEHTRIS XDR Platform, that can be used by humans and software robots. Indeed, through internal API, TEHTRIS components can ask XDR/ CTI if there is an intel about a running operation.

Let’s suppose a XDR/ EDR OPTIMUS agent found a persistent unknown binary hidden on the hard drive of a sensitive server: it will quickly get information back from the XDR/ CTI, like offline antiviruses analysis, sandboxes analysis, artificial intelligence analysis, threat analysis through internal or external databases, etc.

As a central brain powering the global technical knowledge to fight against all threats, XDR/ CTI is a kind of shared subconscious for all our software robots worldwide. If a malicious binary or process is found in Singapore, it will be shared in San Francisco in seconds, providing a positive reverse outbreak to fight against infections and intruders.