Close
  • Latest News
  • Big Data and Analytics
  • Cloud
  • Networking
  • Cybersecurity
  • Applications
  • IT Management
  • Storage
  • Sponsored
  • Mobile
  • Small Business
  • Development
  • Database
  • Servers
  • Android
  • Apple
  • Innovation
  • Blogs
  • PC Hardware
  • Reviews
  • Search Engines
  • Virtualization
Read Down
Sign in
Close
Welcome!Log into your account
Forgot your password?
Read Down
Password recovery
Recover your password
Close
Search
Logo
Logo
  • Latest News
  • Big Data and Analytics
  • Cloud
  • Networking
  • Cybersecurity
  • Applications
  • IT Management
  • Storage
  • Sponsored
  • Mobile
  • Small Business
  • Development
  • Database
  • Servers
  • Android
  • Apple
  • Innovation
  • Blogs
  • PC Hardware
  • Reviews
  • Search Engines
  • Virtualization
More
    Home Cybersecurity
    • Cybersecurity

    Anomali Debuts Free Tool for STIX/TAXII Threat Intelligence Feeds

    By
    Sean Michael Kerner
    -
    November 23, 2016
    Share
    Facebook
    Twitter
    Linkedin

      Security firm Anomali announced on Nov. 21 the debut of its new free STAXX tool to receive threat intelligence feeds.

      In the world of threat feeds, STIX (Structured Threat Information Expression)and TAXII (Trusted Automated eXchange of Indicator Information) are two core technologies that provide a standardized way for analysts to gain access to intelligence.

      One of the primary ways that organizations have been able to consume STIX and TAXII is with the freely available Soltra Edge software that was being developed as a joint effort of the Financial Services Information Sharing and Analysis Center (FS-ISAC) together with the Depository Trust and Clearing Corporation (DTCC). But the Soltra Edge effort is now being shutdown.

      The Anomali STAXX offering was built in direct response to the Soltra shutdown to help enable organizations to continue to easily benefit from STIX and TAXII.

      “STAXX is an amalgamation and a hat-tip to STIX/TAXII, the most widely used language, services and message exchange protocol for describing cyber threat information,” Hugh Njemanze, CEO of Anomali told eWEEK. “We are fully committed to supporting, and enhancing STIX/TAXII further as a founding member of the OASIS Cyber Threat Intelligence committee, the organization maintaining the STIX/TAXII standards.”

      Anomali is a security company that was originally known as ThreatStream and re-branded as Anomali in February. The company has raised $56 million in venture funding to date, including a $30 million Series C on April 21.

      Anomali’s products include platforms that help organizations to match customer log data against threat intelligence to fully identify potential indicators of compromise (IOCs). The STAXX offering is a new effort and isn’t based on any existing Anomali product.

      “STAXX is an Anomali-authored, purpose-built product, and is neither an open-source project re-bundled as an Anomali package, nor is it a stripped down ThreatStream engine,” Njemanze said. “We released STAXX to provide an alternative for Soltra’s customers to help them access cyber threat intel from any STIX/TAXII server.”

      Njemanze added that there are no restrictions built into STAXX and organizations can configure as many feeds as they like. Anomali’s goal is for STAXX to become the easiest, most efficient way to discover, access and manage threat intelligence feeds. Njemanze said that making STAXX free allows as many users and organizations as possible to gain access to valuable threat intelligence information.

      From a deployment and installation perspective, Njemanze emphasized that just like Soltra, STAXX is offered completely free. Users just need to register at anomali.com/staxx, accept the license terms, and then download and install the STAXX software.

      From there Anomali presents an intuitive wizard to configure STIX/TAXII feeds and begin accessing threat intelligence. STAXX can be deployed as a virtual appliance on a VMWare or Virtual Box instance.

      STAXX also has a Linux installer for organization that want to deploy it on a native Linux instance. Currently STAXX is not available as a container, though Njemanze noted that Anomali could create a Docker container for STAXX as soon as there is enough demand.

      In the first few days of availability for STAXX, Njemanze said that there has already been interest with Anomali’s website traffic doubling over normal levels.

      “We have seen hundreds of registrations and that appears to be accelerating as word gets out,” Njemanze said. So far the overall feedback to STAXX from users has been positive with users reporting that the entire process of installation and configuration is simple and intuitive, Niemanze added.

      Looking forward, Njemanze said that Anomali is already hard at work on the next STAXX release, which will provide out-of-the-box access to a number of pre-configured threat intelligence sources. Additionally, Anomali plans to integrate features of its ThreatStream portal and Anomali Reports solution with STAXX.

      Sean Michael Kerner is a senior editor at eWEEK and InternetNews.com. Follow him on Twitter @TechJournalist.

      Sean Michael Kerner
      Sean Michael Kerner is an Internet consultant, strategist, and contributor to several leading IT business web sites.

      MOST POPULAR ARTICLES

      Cybersecurity

      Visa’s Michael Jabbara on Cybersecurity and Digital...

      James Maguire - May 17, 2022 0
      I spoke with Michael Jabbara, VP and Global Head of Fraud Services at Visa, about the cybersecurity technology used to ensure the safe transfer...
      Read more
      Big Data and Analytics

      Alteryx’s Suresh Vittal on the Democratization of...

      James Maguire - May 31, 2022 0
      I spoke with Suresh Vittal, Chief Product Officer at Alteryx, about the industry mega-shift toward making data analytics tools accessible to a company’s complete...
      Read more
      Big Data and Analytics

      GoodData CEO Roman Stanek on Business Intelligence...

      James Maguire - May 4, 2022 0
      I spoke with Roman Stanek, CEO of GoodData, about business intelligence, data as a service, and the frustration that many executives have with data...
      Read more
      Applications

      Cisco’s Thimaya Subaiya on Customer Experience in...

      James Maguire - May 10, 2022 0
      I spoke with Thimaya Subaiya, SVP and GM of Global Customer Experience at Cisco, about the factors that create good customer experience – and...
      Read more
      Cloud

      Yotascale CEO Asim Razzaq on Controlling Multicloud...

      James Maguire - May 5, 2022 0
      Asim Razzaq, CEO of Yotascale, provides guidance on understanding—and containing—the complex cost structure of multicloud computing. Among the topics we covered:  As you survey the...
      Read more
      Logo

      eWeek has the latest technology news and analysis, buying guides, and product reviews for IT professionals and technology buyers. The site’s focus is on innovative solutions and covering in-depth technical content. eWeek stays on the cutting edge of technology news and IT trends through interviews and expert analysis. Gain insight from top innovators and thought leaders in the fields of IT, business, enterprise software, startups, and more.

      Facebook
      Linkedin
      RSS
      Twitter
      Youtube

      Advertisers

      Advertise with TechnologyAdvice on eWeek and our other IT-focused platforms.

      Advertise with Us

      Menu

      • About eWeek
      • Subscribe to our Newsletter
      • Latest News

      Our Brands

      • Privacy Policy
      • Terms
      • About
      • Contact
      • Advertise
      • Sitemap
      • California – Do Not Sell My Information

      Property of TechnologyAdvice.
      © 2021 TechnologyAdvice. All Rights Reserved

      Advertiser Disclosure: Some of the products that appear on this site are from companies from which TechnologyAdvice receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. TechnologyAdvice does not include all companies or all types of products available in the marketplace.

      ×