https://catalogartifact.azureedge.net/publicartifacts/data443riskmitigationinc1761580347231.azure-sentinel-solution-cyren-defender-ti-03d05590-5fe0-4311-b373-4d8ad304ac20/image1_LogolargeCyren.png
Cyren Defender Threat Intelligence
by Data443
Just a moment, logging you in...
Cyren IP reputation threat intelligence for Microsoft Sentinel with Defender IOC ingestion.
The Cyren Defender Threat Intelligence solution integrates Cyren's IP reputation threat intelligence feed with Microsoft Sentinel. It automatically retrieves known malicious IP addresses from Cyren and ingests them into Microsoft Defender for Endpoint as threat indicators.
This solution includes:
- Logic App playbook for automated Cyren IP reputation IOC retrieval
- Automated threat indicator ingestion into Microsoft Defender for Endpoint via the Upload Indicators API
- Scheduled execution for continuous threat intelligence updates
Prerequisites:
- Microsoft Sentinel workspace
- Cyren API credentials (IP Reputation feed access)
- Microsoft Defender for Endpoint with Threat Intelligence permissions