VRadar Tutorial — Episode 07: Threat Intelligence on Alerts

In this episode, you'll learn to use Threat Intelligence to enrich alert data. Open the Alerts tab and click an alert with a source I P address. In the detail panel, find the Threat Intelligence section. VRadar automatically queries three world-leading sources: AbuseIPDB for community confidence score, VirusTotal which checks across seventy antivirus engines, and AlienVault OTX which provides pulses from researchers. The composite result helps you decide quickly: clean if the I P is safe, suspicious if it warrants review, malicious if certainly hostile. Each source shows its own details: report count, latest report date, associated tags. Results are cached twenty four hours in Redis to avoid rate limits. Threat Intelligence helps you decide whether to block based on real data, not guesses. 🌐 Sign up: https://vradar.io 📧 Support: [email protected] 📺 Playlist: VRadar Tutorial Series (English) Tutorial series for VRadar — Vietnam's SOC SaaS platform. 18 episodes from login to post-quantum PQ-Agent install. #VRadar #tutorial #SOC #cybersecurity #Wazuh #English