One of the Strobes VM use cases is to provide a way for customers to prioritize vulnerabilities in their organization using vulnerability intelligence. Our research and engineering teams created an advanced aggregation tool that syncs data from more than 100+ sources and in real time. Our goal is to make sure the data is as accurate as possible so it helps in prioritizing vulnerabilities efficiently for our customers.
Strobes VI is intel that comes with your Strobes subscription. In the last few months, we received customer requests to use Strobes VI through an API or a client to enrich their existing vulnerabilities in an SIEM or in a SOC environment.
We are happy to announce that we are releasing an API and a python client
Strobes VI Rest API
Using the Rest API is simple, just send a “GET” request to https://intel.strobes.co/api/nvd/CVE-2021-26412
The request will return a response with respective CVE’s:
Python API Client
Currently, Strobes API is F2U, and offers an unlimited number of API calls. A full release is planned for July this year which will limit the number of API calls that can be made every hour and will require a license key. Enjoy the unlimited API calls while they last and please send us the feedback
Install
Usage
Insights
As of 9th May 2022, the tool has ingested and correlated about,
- 185,860 vulnerabilities
- 6,932 zero-days
- 45,804 vulnerabilities with exploits
Among which there are,
- 4,556 have a priority score greater than 900
- 79,120 Exploit references
- 10,898 Zeroday references
Use Cases
We’ve collected several use cases for Strobes VI. The most popular are listed below.
Vulnerability Prioritization
If you’re doing vulnerability scanning at scale with millions of vulnerabilities reported daily, it’s difficult to identify the ones that need immediate patching. With Strobes VI, you can enrich vulnerabilities with intelligence that helps you identify the top vulnerabilities and fixes.
SIEM/SOC
Even with millions of events and threats, you can correlate vulnerability intelligence with different events right within a SIEM platform to speed up your incident response process.
Compliance
Correlate risks with vulnerability intelligence to identify top failures while following industry best standards.
Roadmap
Taxonomies & Compliance
Ongoing research and development in the upcoming months will add mappings for GDPR, PCI, HIPAA and more.
Integrations
With a full release planned for July 2022, we are building integrations for the top SIEM platforms like Splunk, Elasticsearch, and Qradar.
Sign up for free to get started with Strobes VI – Advanced Vulnerability Intelligence
