Skip to main content

Mandiant

Threat Intelligence

The Mandiant connector integrates with the Mandiant Threat Intelligence platform (Google Threat Intelligence). It synchronizes vulnerability intelligence records from the Mandiant Threat Intelligence API into Brinqa, enriching CVE records with Mandiant-specific intelligence such as risk ratings, exploitation state and consequence, observed-in-the-wild and zero-day indicators, EPSS scores, CISA KEV status, CVSS v2/v3 metrics, associated threat actors and malware, available mitigations, and references.

Each Mandiant vulnerability is mapped to the Brinqa CveRecord model. The connector supports incremental synchronization based on the record's last-updated timestamp.

Data retrieved from Mandiant

Connector ObjectRequiredMaps to Data Model
VulnerabilityYesCve Record
note

For detailed steps on how to view the data retrieved from Mandiant in the Brinqa Platform, see How to view your data.