Internal Applications
Internal applications include various types of security tools such as SIEM, SOAR, EDR, network security, and sandboxing. The tools enable security analysts to use the app-specific actions in rules to perform specific tasks during threat analysis, such as updating context tables, triggering playbooks, updating lookup tables, submitting URLs, and more.
Intel Exchange (CTIX) supports integration with the following internal applications to use the app-specific actions in rules.