One of the Strobes VM use cases is to provide a way for customers to prioritize vulnerabilities in their organization using vulnerability intelligence. Our research and engineering teams created an advanced aggregation tool that syncs data from more than 100+ sources and in real time. Our goal is to make sure the data is as accurate as possible so it helps in prioritizing vulnerabilities efficiently for our customers.


Strobes VI is intel that comes with your Strobes subscription. In the last few months, we received customer requests to use Strobes VI through an API or a client to enrich their existing vulnerabilities in an SIEM or in a SOC environment. 

We are happy to announce that we are releasing an API and a python client

🌀 Strobes VI Rest API

Using the Rest API is simple, just send a “GET” request to https://intel.strobes.co/api/cve/<cve-id> by replacing cve-id.

The request will return a response with respective CVE’s: 

  • Exploit References
  • Patch References
  • Zeroday References
  • Advisory References
  • Taxonomy References
    • OWASP
    • NIST
    • CWE
    • CAPEC
    • WASC
  • Twitter Trend
  • Vulnerable products


🔧 Python API Client 

Currently, Strobes API is F2U, and offers an unlimited number of API calls. A full release is planned for July this year which will limit the number of API calls that can be made every hour and will require a license key. Enjoy the unlimited API calls while they last and please send us the feedback

Install
Usage

🎓 Insights

As of 9th May 2022, the tool has ingested and correlated about,

  • 185,860 vulnerabilities
  • 6,932 zero-days
  • 45,804 vulnerabilities with exploits

Among which there are,

  • 4,556 have a priority score greater than 900
  • 79,120 Exploit references
  • 10,898 Zeroday references


🔨 Use Cases

We’ve collected several use cases for Strobes VI. The most popular are listed below. 


Vulnerability Prioritization

If you’re doing vulnerability scanning at scale  with millions of vulnerabilities reported daily, it’s  difficult to identify the ones that need immediate patching. With Strobes VI, you can enrich vulnerabilities with intelligence that  helps you identify the top vulnerabilities and fixes. 

SIEM/SOC

Even with millions of events and threats, you can correlate vulnerability intelligence with different events right within a SIEM platform to speed up your incident response process. 

Compliance

Correlate risks with vulnerability intelligence to identify top failures while following industry best standards.

🚧 Roadmap 

Taxonomies & Compliance

Ongoing research and development in the upcoming months will add mappings for GDPR, PCI, HIPAA and more.  

Integrations

With a full release planned for July 2022, we are building integrations for the top SIEM platforms like Splunk, Elasticsearch, and Qradar. 

Sign up for free to get started with Strobes VI - Advanced Vulnerability Intelligence

x