Learn. Share. Secure. Access product knowledge, get certified, and collaborate with the global Securonix user community.
Join the discussion, ask questions, get solutions.
Discover product guides and helpful how-tos.
Join groups and collaborate with peers.
Stay up to date with our product team.
Share your ideas and suggestions with our team.
Discover and join upcoming events.
Explore Securonix solutions, products, and company insights
Access product guides, release notes, and technical documentation
Discover the ThreatQ threat intelligence platform and solutions
Find step-by-step guides, release notes, and troubleshooting resources
Discover and deploy integrations, extensions, and apps for the ThreatQ platform
Hello!I tried to register for a partner account and log in, but I was unsuccessful. I received a message that my account was blocked. I tried to recover my forgotten password, but I didn't receive an email requesting password recovery.
The proverbial phone is shrinking before my eyes.In the 1980s, the "mobile phone" was a brick. A two-pound, briefcase-attached monument to the idea that wireless communication was possible, if inconvenient. Those who carried one weren't just making c
Hello, We have recently onboarded Cloudflare audit logs and was instructed by a technician that we could also bring in Cloudflare WAF logs on the same data source. It has been enabled on the application, but we are not seeing the WAF logs. Has anyone
name: PowerShell Script Block and Transcription Logging Suppression Analyticcategory: "Defense Evasion"threatname: "Impair Defenses: Indicator Blocking"functionality: "Endpoint Management Systems"description: | Detects registry modifications that di
name: VBScript Backdoor Launcher Dropped to User Startup Folder Analyticcategory: "Persistence"threatname: "Boot or Logon Autostart Execution: Registry Run Keys / Startup Folder"functionality: "Endpoint Management Systems"description: | Detects VBSc
name: Windows Firewall Connection Logging Disabled via netsh Analyticcategory: "Defense Evasion"threatname: "Impair Defenses: Disable or Modify System Firewall"functionality: "Endpoint Management Systems"description: | Detects netsh commands that di
name: Self-Referential Batch Script Payload Extraction Analyticcategory: 'Execution'threatname: 'Command and Scripting Interpreter: Windows Command Shell'functionality: 'Microsoft Windows PowerShell'description: | Detects PowerShell script block act
Have a Product Idea? Help Shape the Future of Securonix Innovation at Securonix is driven by you — our customers and partners. Whether you’ve identified a gap, experienced a challenge, or have an idea for a new feature, we want to hear from you. We’
On April 19, 2026, Vercel — the cloud platform behind the widely adopted Next.js web framework and a core piece of infrastructure for thousands of JavaScript developers and Web3 projects — publicly confirmed a security incident involving unauthorized
Hi Community, ThreatQ currently has the ability to parse PDFs, CSVs, and other plain text files for IOCs. How useful would it be to add support for parsing Excel files? Here are some additional questions that will help us understand how you may use T
We noticed a log source searchable period has been showing "16hr in future - 91 days ago" for the past 4-5days. How do we fix this?
Is there a reporting feature on the HUB to be able to alert when disk space is filling up, when resources are in over use, or when there is an excessive amount of failures going to the UI?
I have a ton of open and closed sources feeding reports, vulnerabilities & CVE indicators into ThreatQ. Because “reports”, “vulnerabilities”, and “indicators” are all different threat libraries inside of ThreatQ, I’ve struggled to find a way to d
Currently, the RF IOC enrichment action provides only a limited set of attributes, such as risk score and malware verdict. Malware attribution, however, is not included in the enrichment results.Since we are paying for an RF license, we would like to
We are pulling data from FS-ISAC into ThreatQ as an event. The issue I am facing here is that we are unable to get the indicators (specifically bank account numbers and phone numbers) ingested into the platform as an indicator.We need to be able to i
During an undetermined number of executions of my playbook, it crashes. Is there a way to validate how many executions have been performed and whether they are causing instability in my service?
When a feed fails—or while developing a new feed—users often download Feed Run files to troubleshoot and understand what went wrong.Currently, these files are automatically zipped and password protected. This design helps prevent the files from being
Where security professionals share intelligence and strengthen defense together
Learn More →
Already have an account? Login
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.
Sorry, we're still checking this file's contents to make sure it's safe to download. Please try again in a few minutes.
Sorry, our virus scanner detected that this file isn't safe to download.
