Schedule Demo

The Anomali Platform

Transform security operations with disruptive security analytics. Go from business risk to cyber actions in minutes. Amplify your visibility, automate your workflows, and optimize your cyber stack.

Do more. With less.

Learn more

Threat Intelligence Management

ThreatStream

The external landscape: From data to insights in minutes.

Lens

Automate intel gathering: Extract intelligence insights from unstructured data.

Detection and Response

Match

Your internal environment: Unlock your visibility and accelerate your protection.

Exposure Management

Attack Surface Management

Your risk surface: Where are you at risk of exposure?

Digital Risk Protection

Your compromise: What have the attackers already taken from you?

The Anomali APP Store

A unique cybersecurity marketplace providing instant access to a growing catalog of threat intelligence providers, integration partners, and threat analysis tools.

Learn more

Marketplace Offerings

Threat Intelligence Feeds

Trial and purchase threat intelligence feeds from Anomali partners – find the right intelligence for your organization, industry, geography, threat type, and more.

Threat Analysis Tools & Enrichments

Gain the tools to pivot quickly from one piece of information to look up other sources of data to get a complete picture of a threat – all one click away.

Security System Partners

Anomali seamlessly integrates with many Security and IT systems to operationalize threat intelligence.

For Partners

Anomali SDKs

Join the Anomali Technology Partner Program

Partners Overview

Anomali offers competitive advantages and new revenue opportunities for partners looking to enhance their product portfolios with our market-leading threat intelligence platform.

Learn more

Sell Anomali

Channel Resellers

MSSPs

System Integrators

Integrate with Anomali

Threat Intel Sharing

Technology Partner Program

Anomali SDKs

About Anomali

Anomali delivers intelligence-driven cybersecurity solutions, including ThreatStream®, Match™, and Lens™. Companies use Anomali to enhance threat visibility, automate threat processing and detection, and accelerate threat investigation, response, and remediation.

Learn more

Anomali at Work

Get in touch

Request a demo

Careers

Datasheet

Partner Data Sheet: Farsight

Download Now

Farsight Security^® DNS Intelligence

Delivers Unmatched Visibility to Improve Threat Detection and Proactively Defend Against Cyberattacks

Anomali and Farsight Joint Solution Features

Farsight Security offers real-time Passive DNS data as part of the Anomali APP Store, a marketplace for premium threat intelligence.
When Anomali users identify a potential malicious IP address or domain name, they can—with a click of a button—purchase access to Farsight’s Passive DNS data to quickly investigate these digital artifacts to advance their investigations.
- Access real-time and historical Passive DNS data from within the Anomali platform
- Enhance, enrich, and contextualize threat intelligence data to concentrate investigations

Immediate Time-to-Value

Discover associations among threat actors and track and block their activity.
Perform fact-based risk assessment of domain names and IP addresses.
Uncover all domains using the same name server infrastructure used by a “known bad” domain.
Reveal the IPs an adversary is using to conceal malicious activity and avoid takedowns.

Accelerate Incident Research and Post Breach Analysis

Anomali and Farsight Security recognize the value that threat intelligence sharing and collaboration plays in increasing the speed and accuracy of threat investigations.

Critical Intelligence

Contextualize, correlate and transform all of your threat and network data to increase the value of your security operations.

Flexible Deployments

Fast, scalable implementation onpremises and in the cloud.

Immediate Results

Improve the speed, accuracy and global view of your digital investigations for faster risk mitigation and prevention.

Case Study
A New Threat From an Old Enemy

Challenge:

Incident Response teams discover new threat intelligence only to find that the threat has been around for months. The team needs to ‘turn back the clock’ and see if anyone in their organization previously visited the identified and/or associated sites and potentially compromised their network.

Solution:

By enriching Anomali data with Farsight Security’s DNSDB, Incident Responders can use historical DNSDB records to gain context and learn the footprint of the attacker’s DNS infrastructure. This will allow Responders to observe the attacker’s use of DNS to conceal their identity and uncover how employees have engaged with those sites.

Customer Benefit:

Access to historical DNS enriches current threat data to quickly understand and respond to threats and security compromises.

Case Study
Proactively Detect and Isolate Advanced Threats

Challenge:

Threat Hunters map out the miscreant’s infrastructure in preparation for take down or discovering advanced threats.

Solution:

Historical DNS allows Hunters to map out the attacker’s infrastructure. By enriching Anomali data with Farsight Security’s DNSDB, Threat Hunters can learn the historical DNS mappings of the IP addresses, name servers, and mail servers associated with the attacker’s organization.

Customer Benefit:

Tie related infrastructures to the attacker’s organization and see other related infrastructures to proactively detect and isolate advanced threats.

Download Now

Threat Intelligence Management

ThreatStream

Lens

Detection and Response

Match

Exposure Management

Attack Surface Management

Digital Risk Protection

Marketplace Offerings

Threat Intelligence Feeds

Threat Analysis Tools & Enrichments

Security System Partners

For Partners

Sell Anomali

Integrate with Anomali

Resources

Browse all

Topics

Free Tools

Anomali at Work

Get in touch

Datasheet

Partner Data Sheet: Farsight

Farsight Security^® DNS Intelligence

Delivers Unmatched Visibility to Improve Threat Detection and Proactively Defend Against Cyberattacks