The Polarity ThreatConnect integration allows Polarity to search your instance of ThreatConnect to return found domains, IPs, hashes, and emails. The integration also allows you to Create and Delete Indicators (IOCs) in bulk from ThreatConnect.
The API URL of the ThreatConnect instance you would like to connect to (including http:// or https://). If you are running an internal instance of ThreatConnect on a non-default port, please specify the port here as well.
Account Identifier that is associated with the API Key
The API (secret) Key associated with the provided Access ID
If checked, users will be able to delete an Indicator from ThreatConnect. (this setting must be set to User can view only).
NOTE: When you delete an Indicator you are doing a deletion of the Indicator from the entire system.
If checked, users will be able to Associate Indicators with Groups from ThreatConnect.
Installation instructions for integrations are provided on the PolarityIO GitHub Page.
Polarity is a memory-augmentation platform that improves and accelerates analyst decision making. For more information about the Polarity platform please see: