SOC Prime builds collective cyber defense by fusing Detection as Code, Sigma, and MITRE ATT&CK® to help teams proactively defend against emerging threats.
The OpenCTI SOC Prime connector can be used to import rules (indicators) from the SOC Prime Platform. The connector leverages the SOC Prime Threat Detection Marketplace API to get the rules. Rules for importing can be selected using content lists or jobs created on the SOC Prime Platform.
