This guide details Proofpoint Emerging Threats Intelligence Query and its portal for investigating IPs, domains, samples, and signatures. It enables users to assess reputation, track IDS events, and connect related domains, samples, and malware activity over time. Features include reputation history graphs, time-range selectors, sample analysis with MD5/SHA256 searches, and SID searches for attack patterns. The tool links global ETPro/ETOpen IDS alerts to local events, supporting threat hunting, IOC correlation, and intrusion kill chain mapping. Benefits include deep context, enhanced investigations, global perspective on exploits, and cooperative workflows with search history. It provides rich visibility into malicious infrastructure, attacker behavior, and evolving threats.

Join for free to read