How it works
2. Run Query / Search
Query multiple or ranges of IP addresses and domains to view a communication timeline. Explore commonalities between IPs, identify compromised hosts, or reveal
other indications of an attack.
1. Input the IP Address or Domain
3. Get Lightning Fast Results!
Quickly respond to alerts and assess risk with actionable insights
4. Enrich Splunk Queries and Investigations
with Scout Insight
Leverage the Scout Insight Splunk App to empower your Splunk implementation
with IP and domain intelligence
Benefits:
-
Enrich data with IP and domain intelligence
-
Accelerate investigations
-
Respond to events, alerts, and incidents faster
-
Leverage all of your data in one place
Loved by SOC Analysts!
Liberate your SOC and CTI teams
with the power of Scout Insight
Fast IP insights
Gain immediate context across IPs tagged as Malicious, Suspicious, Device & Infrastructure with thousands of subtags to accelerate incident response.
Consolidate Context Vendors
Bring together Passive DNS, Reverse DNS, and most Observed Domains in one pane of glass.
Ingest data using a variety of integrations
API for SIEM/SOAR integration to automate workflows.