extension ExtPose

ThreatConnect Browser Extension

CRX id


Description from extension meta

Browser extension that enables users to query ThreatConnect, add indicators, and group indicators directly from a supported browser.

Image from store ThreatConnect Browser Extension
Description from store Version 2 of the ThreatConnect Browser Extension builds upon the foundation set with version 1 and adds support for scanning a page for groups like Malware families and Intrusion Sets. In addition to returning information about a given group, users will also see a list of known aliases for the groups when appropriate. This helps users stay focused on the work at hand and reduces the time needed to determine the names different vendors use for threat actor groups. With the ThreatConnect Browser Extension, users can scan an online resource for potential Indicators, query ThreatConnect for information about scan results, and import Indicators and Group Indicators directly into ThreatConnect from a supported web browser. The ThreatConnect Browser Extension can scan various online resources for potential Indicators, including static and dynamic webpages, social media platforms, Google Docs files, email messages, and even ThreatConnect itself. Users have the ability to: Instantaneously access the insight of ThreatConnect at their fingertips, directly from the web browser they’re working from - fewer clicks means less frustration and quicker results. Immediately leverage the global context from CAL, including classifiers from our analytics, anonymized observations/sightings of IOCs, and trending impressions information. Quickly import disparate single indicators or batches of unstructured data along with associated source information into ThreatConnect without disrupting their investigative process - simply tag and import as a group when you’re ready. Increase the value of their threat intelligence program by giving more users access at no additional cost and without the burden of learning and regularly accessing a new system. In order to use the extension, users must be using a ThreatConnect version 6.4 or above.

Latest reviews

  • (2021-10-21) William Moore: Fantastic productivity gains. I can scan any page and get IOC's with reputation into my TIP platform.
  • (2021-10-21) Susana D'sa: Awesome extension!!! Just what I needed to make my life as an analyst so much simpler.


183 history
5.0 (2 votes)
Last update / version
2021-12-03 / 2.0.0
Listing languages