Vulnerability
Intelligence
Pinpoint, prioritize, and take action on critical vulnerabilities before they impact the business.
Why choose this Module?
Vulnerability Intelligence enables you to reduce investigation efforts and improve patching decisions with access to real-time intelligence on the risk of vulnerabilities specific to your organization. Understand the severity, availability, and complexity of a vulnerability, and get contextualized intelligence so you can quickly make confident decisions, fix the gaps, and prevent attacks.
Prioritize patching based on risk.
Access real-time intelligence.
Access real-time intelligence.
Vulnerability Intelligence offers relevant and timely information on known, emerging, and zero-day vulnerabilities specific to your tech stack, making it quick and easy to research and identify where to focus resources.
Prioritize based on exploitation risk.
Prioritize based on exploitation risk.
Get a dynamic Risk Score for each vulnerability to see which ones require immediate action, and utilize helpful context to justify patching decisions.
Track the vulnerability weaponization lifecycle.
Track the vulnerability weaponization lifecycle.
Gain awareness of vulnerabilities specific to your organization across their weaponization lifecycle, from disclosure to exploited in the wild.
See what our customers are saying.
We use the Vulnerability Intelligence Module playbook alerts to automatically notify vulnerability teams of high-risk vulnerabilities. We typically see 5–10 CVEs a month escalated automatically, saving the team roughly 3–5 hours gathering information manually.
Senior Engineer/Threat Analyst
Insurance Company
Recorded Future tends to be the first source to publish vulnerability related information, to include PoC exploits and exploits seen in the wild. This information is very valuable in prioritizing vulnerabilities for remediation.
Cybersecurity Professional
Aerospace & Defense Company
Intelligence from Recorded Future enables us to separate vulnerabilities that pose immediate dangers to Norwegian telecom organizations from those that represent merely theoretical or long-term risks.
Ole Kristoffer Apeland
Chief Security Engineer
See it in action.
Discover what your organization can do with the Vulnerability Intelligence Module.
Top Vulnerability Intelligence features.
Get the support you need to succeed.
Engage with our experts.
Grow your security practice with professional services programs including Analyst on Demand, Intelligence Services, and Managed Monitoring.
Explore our industry-leading research.
Discover threat landscape insights from our Insikt Group® threat research team so you can reduce risk and prevent business disruption.
Access our training resources.
Learn your way around our products and build effective intelligence strategies in our Recorded Future University training courses.
Integrations
See how the Third-Party Intelligence Module integrates with your existing tech stack.
ServiceNow
Tenable
Splunk
Palo Alto
FAQ
Your questions, answered.
Why can’t I just rely on CVSS scores?
CVSS scores are often misleading because they rank threats in terms of severity alone. Classification and ranking systems like Common Vulnerabilities and Exposures (CVE) and Common Vulnerability Scoring Systems (CVSS) don’t take into account whether threat actors are actually exploiting vulnerabilities.
How can Vulnerability Intelligence help with prioritization efforts?
Vulnerability Intelligence uses real-time data to score vulnerabilities based on their exploitability, delivering the context you need to prioritize patches that matter most and prevent attacks. Proprietary machine learning technology from Recorded Future automatically detects reporting of new observables, including vulnerabilities, exploits, proof-of-concept code, exposed company assets, and threat actors targeting organizations and industries.
Is Vulnerability Intelligence customizable to my organization?
Yes, Vulnerability Intelligence tracks vulnerabilities specific to your organization’s tech stack without any agents or sensors required. Create Alerts based on specific criteria, such as a change in the vulnerability lifecycle of a specific CVE, allowing you to focus on the most relevant vulnerabilities for your organization.
What are the different vulnerability lifecycle stages?
Recorded Future tracks vulnerabilities across four distinct lifecycle stages:
- Disclosure — Existence of a vulnerability has been announced, either by a vendor or research, and initial assessments of impact may be available and incorporated into scanners.
- Proof of Concept — Non-malicious PoCs exist for this vulnerability. Includes both verified and unverified lab-tested samples.
- Exploit Likely — These are high-criticality vulnerabilities with risky characteristics (e.g., remote execution) that may have been exploited or are likely to be exploited soon.
- Exploited — These are vulnerabilities used in malicious exploits or as part of a known attack.
How can Recorded Future integrate with my current security tools and workflows?
There are several options for integrating Vulnerability Intelligence into your current security tools and workflows. Check out our Integrations page for more information on our pre-built integrations and how to integrate into your tools via API. Or learn more about how you can use our browser extension.