Open Threat Exchange (OTX) is an open platform for sharing information about cyber threats. It is operated by the security company AlienVault (now part of AT&T Cybersecurity) and is designed to quickly and collaboratively share insights about attacks, vulnerabilities, malware and attackers.
OTX is a threat intelligence network in which security experts, companies and research institutions compile data on current threats. This information is published in so-called pulses – structured posts that contain IP addresses, domains, hash values or tactics of the attackers.
OTX is based on the principle of collective defense: when a company detects a new threat, others can benefit by taking protective measures early on.
To detect and assess emerging threats
For early warnings of ongoing or imminent attacks
To enrich security solutions (e.g., firewalls, SIEMs, endpoint protection) with up-to-date indicators
For the exchange with the security community
