ANY.RUN Releases Connector for Microsoft Sentinel to Deliver Real-Time Threat Intelligence on Emerging Malware
DUBAI, DUBAI, UNITED ARAB EMIRATES, August 5, 2025 /EINPresswire.com/ -- ANY.RUN, a leading provider of interactive malware analysis and threat intelligence, is thrilled to announce a connector for Microsoft Sentinel, empowering Security Operations Centers (SOCs) and Managed Security Service Providers (MSSPs) with actionable, real-time threat intelligence feeds.
TI Feeds deliver high-fidelity Indicators of Compromise (IOCs) directly into Microsoft Sentinel via the STIX/TAXII, which helps organizations to detect and respond to emerging cyberthreats faster and more effectively.
๐๐๐ฆ๐-๐๐ก๐๐ง๐ ๐ข๐ง๐ ๐๐ฉ๐๐๐ ๐๐ง๐ ๐๐๐๐ฎ๐ซ๐๐๐ฒ ๐ข๐ง ๐๐ก๐ซ๐๐๐ญ ๐๐๐ญ๐๐๐ญ๐ข๐จ๐ง ๐ฐ๐ข๐ญ๐ก ๐๐๐๐ฅ-๐๐ข๐ฆ๐ ๐๐๐๐ฌ
ANY.RUNโs Threat Intelligence (TI) Feeds provide malicious IPs, domains, and URLs extracted from live sandbox analyses, updated every two hours. Unlike traditional post-incident reports, these feeds offer fresh, high-confidence IOCs derived from real-time attack detonations across 15,000 organizations worldwide.
The connector for MS Sentinel requires no complex setups or custom scripts, making it accessible and efficient for security teams.
Key Benefits:
โ ๐๐๐๐จ๐ซ๐ญ๐ฅ๐๐ฌ๐ฌ ๐๐๐ญ๐ฎ๐ฉ: Connect ANY.RUNโs TI Feeds to Microsoft Sentinel using a custom API key and the native TAXII connector, ensuring a plug-and-play experience.
โ ๐๐ง๐ก๐๐ง๐๐๐ ๐๐ฎ๐ญ๐จ๐ฆ๐๐ญ๐ข๐จ๐ง: Leverage Sentinelโs playbooks, powered by Azure Logic Apps, to automate actions like blocking malicious IPs, reducing manual workload and accelerating response times.
โ ๐๐จ๐ฌ๐ญ ๐๐๐๐ข๐๐ข๐๐ง๐๐ฒ: Utilize existing Sentinel infrastructure without additional costs, minimizing financial and operational risks from undetected threats.
โ ๐๐ข๐๐ก ๐๐จ๐ง๐ญ๐๐ฑ๐ญ: Each IOC is enriched with links to threat analyses in ANY.RUNโs Interactive Sandbox, enabling deeper investigations and custom rule creation.
โ ๐๐จ๐ฐ ๐๐จ๐ข๐ฌ๐: Expert pre-processing ensures near-zero false positives, saving valuable time for SOC teams.
๐๐ฆ๐ฉ๐จ๐ฐ๐๐ซ๐ข๐ง๐ ๐๐ฎ๐ฌ๐ข๐ง๐๐ฌ๐ฌ ๐๐ ๐๐ข๐ง๐ฌ๐ญ ๐๐ฒ๐๐๐ซ ๐๐ญ๐ญ๐๐๐ค๐ฌ
ANY.RUNโs TI Feeds give SOCs and MSSPs a competitive edge by delivering fresh, actionable intelligence to detect and mitigate threats before they cause harm. This enhances Sentinelโs analytics, allowing security teams to visualize threats, prioritize incidents, and streamline triage processes.
Automated correlation with logs from EDR systems, network equipment, and other sources ensures rapid alert generation and response, reducing Mean Time to Respond (MTTR) and preventing costly breaches.
๐๐๐ญ ๐๐ญ๐๐ซ๐ญ๐๐ ๐๐จ๐๐๐ฒ
Security teams can start leveraging ANY.RUNโs TI Feeds in Microsoft Sentinel with a simple setup process. By accessing the Threat Intelligence TAXII connector in their Sentinel workspace, teams can configure IOC ingestion and unlock powerful threat detection capabilities.
The detailed setup instructions and more information on the connector are available on ANY.RUNโs blog.
๐๐๐จ๐ฎ๐ญ ๐๐๐.๐๐๐
ANY.RUN is a leading cybersecurity platform trusted by over 500,000 professionals and 15,000 organizations worldwide. Its interactive sandbox and threat intelligence solutions enable security teams to analyze threats in real-time, gain actionable insights, and respond faster to advanced threats. With a mission to simplify and accelerate incident response, ANY.RUN continues to innovate and empower the global cybersecurity community.
The ANY.RUN team
ANYRUN FZCO
+1 657-366-5050
email us here
Visit us on social media:
LinkedIn
YouTube
X
Legal Disclaimer:
EIN Presswire provides this news content "as is" without warranty of any kind. We do not accept any responsibility or liability for the accuracy, content, images, videos, licenses, completeness, legality, or reliability of the information contained in this article. If you have any complaints or copyright issues related to this article, kindly contact the author above.
