VulnCheck
VulnCheck is a threat intelligence application that provides intelligence about exploits and vulnerabilities, enabling security analysts to make informed decisions to remediate vulnerabilities. Intel Exchange (CTIX) integrates with VulnCheck to receive feeds related to vulnerabilities from the NIST National Vulnerability Database (NVD), related exploits, and known exploited vulnerabilities (KEVs). This integration also retrieves the usage details of the vulnerabilities and exploits by threat actors, ransomware, and botnets.
Intel Exchange provides the following API feed sources for VulnCheck:
VulnCheck Community (Free): This feed source allows you to retrieve feeds about the publicly available known exploited vulnerabilities (KEV). Additionally, it does not require a premium subscription to VulnCheck and is only available from Intel Exchange v3.6.3.2. For more information see VulnCheck Community.
VulnCheck Premium: This feed source allows you to retrieve feeds about vulnerabilities, threat actors, IP addresses, and malware. This feed source requires a premium subscription to VulnCheck and is only available from Intel Exchange v3.6.3.2. For more information see VulnCheck Premium.
Note
Before v3.6.3.2, Intel Exchange offered two separate VulnCheck integrations: Vulncheck and Vulncheck Premium. These older integrations had different feed channels compared to the updated VulnCheck integrations introduced in version v3.6.3.2. For more details, see VulnCheck (Old).