Like many enterprise SOCs, we’ve learned how valuable VirusTotal and DomainTools are as sources of high-quality contextual information.
But with cyberattacks and the skills gap getting worse, SOCs can no longer afford to have analysts manually coordinate this data. In fact, one customer told us that he personally copy-and-pasted hashes hundreds of times per day—and so did the rest of his teammates.
Fortunately, with D3’s automation features, rapidly gathering and correlating from VirusTotal and DomainTools is now a reality. Analysts can: